Americans duped into losing $10 billion by illegal Indian call centres in 2022: Report

  • US citizens lost over $10 billion due to phishing calls by illegal Indian call centres in 2022, as per the Federal Bureau of Investigation data.
  • Most of these complaints included cyber crime related to investment ($3 billion), business email compromise ($2.4 billion), personal data breach ($1.2 billion), romance ($1 billion) and tech support ($781 million).

More than 829 million cyber attacks fended off in Q4 globally; 59% of the websites are in India

45% of cyberattacks targeted mid-market organisations with revenues between $10 million and $1 billion, while just 21% targeted large enterprises with revenues exceeding $1 billion.

However, small businesses accounted for 34% of attacks, suggesting that all businesses are susceptible to them. The report also stated that a healthcare customer’s over 20 applications are the subject of DDoS attacks.

Experts believe hacktivism will rise rampantly in 2023

Analysts said the threat of “hacktivism,” or cyberattacks on governmental institutions driven by political or social motives, is expected to increase in 2023.

Governments experienced 1,564 weekly attacks on average in the third quarter of this year, with 3,354 attacks per organisation per week in India’s government sector over the previous six months.


Newspaper The Guardian hit by ransomware attack; online publishing is unaffected

Staff was instructed to work from home as a result of the incident, which started late on Tuesday night and disrupted some of the company’s technical infrastructure.

Online publishing is largely unaffected; articles are still written and added to the Guardian website and mobile app. The company expressed confidence that it could still publish Thursday’s print edition.

Cyberattacks against small businesses cost $7 billion in 2021: FBI

The American public reported 847,376 complaints to the FBI’s Internet Crime Complaint Center (IC3) in 2021 about cyberattacks and malicious online activities, a 7% rise from the previous year.

Potential losses from those attacks might total more than $6.9 billion, a 64% rise over the previous year, and the majority of those victims were small businesses.

Cyberattack on Delhi AIIMS servers originated from China

Five physical servers out of the 100 total servers—40 physical and 60 virtual—were compromised by the hackers. The damage is currently limited but could have been far worse.

The initial system problem occurred on November 23, and two days later, the Intelligence Fusion and Strategic Operations (IFSO) unit of the Delhi Police filed a case of extortion and cyber terrorism.

33% of consumers worldwide are victims of data breaches

One out of every three customers worldwide has already experienced a data breach through a company that holds their personal information.

Consumers who are victims of data breaches make up the biggest percentage (48%) in the United States. However, consumer trust in the US is stronger (80%) than in nations with fewer data breaches, such as Germany, Australia, and the UK.

Most users’ data found in cyber crime markets belong to Indians: NordVPN

A NordVPN research highlighted that at least 12% of all unique user data discovered in cybercrime markets belonged to Indians. These data include passwords, financial information and even cookies stored on a device.

While NordVPN tracked information for 5 million distinct users worldwide, information for Indian users topped the list, with more than 6 lakh users discovered in well-known databases.

Facebook credentials-stealing malware has infected 300,000 Android devices

Attempts to steal Facebook account credentials from affected devices have been made since 2018 by an Android malware operation disguising itself as reading and educational apps.

With a primary focus on Vietnam, the campaign has infected at least 300,000 devices in 71 different countries. Through unofficial Android app stores, the apps are still being distributed.

Australia will now fine firms up to AU$50 million for data breaches

The Australian parliament has approved a bill to amend the country’s privacy legislation, significantly increasing the maximum penalties to AU$50 million for companies and data controllers who suffered large-scale data breaches.

The most notable incidents were the Optus telecommunication provider data breach that impacted 11 million people and the Medibank insurance firm ransomware attack that exposed the data of 9.7 million.

IKEA says it was hit by ransomware attack; investigation underway

“IKEA Morocco and Kuwait faced a cyber attack, causing disruptions on some operating systems. The attack is being investigated in collaboration with the competent authorities,” the company said.

Since Vice Society has already posted the sensitive files to its data leak website, it is unlikely that the attack was recent. This suggests that IKEA did not satisfy the ransom requirements.

India’s healthcare sector faced 1.9 million cyberattacks this year so far

A total of 41,181 distinct IP addresses were identified as the source of the attacks, and they were located in China, Pakistan, and Vietnam.

The majority of the systems the attackers targeted were those with internet access, including remote desktop protocol (RDP), susceptible server message blocks (SMB), database services, and outdated Windows server architectures.

LastPass was breached. Again.

Password manager LassPass said it’s investigating a security incident after its systems were compromised for the second time this year.

LastPass chief executive Karim Toubba said that an “unauthorized party” recently gained access to some customers’ information stored in a third-party cloud service shared by LastPass and its parent company, GoTo.