Cyber attacks are on the rise in 2022. Despite increased cybersecurity awareness, businesses have not been able to defend themselves from the rapidly changing threat landscape. Compared with the same period in 2021, the frequency of attacks increased by 3 million in the first half of 2022¹. Of these attacks, ransomware attacks are frequently the most damaging– and most costly to corporations.
Despite the grim statistics, all hope is not lost. In the face of a complex threat landscape, businesses can learn from the most prominent attacks faced in the year and protect themselves appropriately. Below are 3 of the top cyber attacks in the first half of 2022. Read on to learn the method of attack– and how you can protect yourself from a similar situation.
In February, the world’s largest GPU manufacturer was the target of a ransomware attack by hacking group LAPSUS$. The group stole 1TB of data and leaked private information online, including chip designs, source code, and the credentials of 70,000 employees.
In response to the attack, Nvidia “further hardened [their] network, engaged cybersecurity incident response experts, and notified law enforcement.” Though some data was leaked online, the company was able to prevent significant damage due to swift countermeasures.
LAPSUS$ has since targeted Samsung, T-Mobile, Ubisoft, and other prominent businesses.
In March, North Korean hacking collective Lazarus perpetrated the second-largest crypto hack in history. $615 million of digital assets were stolen from Ronin, the blockchain platform that supports popular NFT-based game Axie Infinity. The hackers exploited the platform’s bridge service, which allows users to move assets from one blockchain to another.
Alarmingly, the attack went unflagged for several days, indicating a lack of basic security monitoring.
The Costa Rican government declared a national state of cybersecurity emergency after a ransomware attack by cybercrime collective Conti left the Ministry of Finance without digital services for three weeks. When the government refused to pay the $20 million ransom, the group leaked confidential files worth 672 GB onto their website.
Two months after the initial attack, Costa Rica has still not been able to recover key online services. According to President Chaves, the “cyberterrorists” have left 9 of 27 government bodies “very affected”. Severe disruptions to healthcare services, inability to issue government salaries, and disruptions to tax collections are just some of the significant challenges with which Costa Rica contends.