Scribd Logo
Upload

Welcome to Scribd!

  • Impact Organisations

    Uploaded by

    olegpodolian
    3 views1 page
    Three major crypto and tech companies experienced data breaches in early 2022: OpenSea had a breach in February that affected 17 users and resulted in $1.7 million stolen. Hackers took advantage of a phishing attack during a system migration. In April, a former employee of Cash App downloaded reports containing personal information for over 8 million users. Cash App notified all users and law enforcement. Twitter announced in July that a breach led to the theft of 5.4 million phone numbers and emails. The attacker exploited a login feature to create a scraped list of public user information. Twitter patched the vulnerability and encouraged two-factor authentication.

    Original Description:

    Original Title

    impact-organisations

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Three major crypto and tech companies experienced data breaches in early 2022: OpenSea had a breach in February that affected 17 users and resulted in $1.7 million stolen. Hackers took advantage of a phishing attack during a system migration. In April, a former employee of Cash App downloaded reports containing personal information for over 8 million users. Cash App notified all users and law enforcement. Twitter announced in July that a breach led to the theft of 5.4 million phone numbers and emails. The attacker exploited a login feature to create a scraped list of public user information. Twitter patched the vulnerability and encouraged two-factor authentication.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    3 views1 page

    Impact Organisations

    Uploaded by

    olegpodolian
    Three major crypto and tech companies experienced data breaches in early 2022: OpenSea had a breach in February that affected 17 users and resulted in $1.7 million stolen. Hackers took advantage of a phishing attack during a system migration. In April, a former employee of Cash App downloaded reports containing personal information for over 8 million users. Cash App notified all users and law enforcement. Twitter announced in July that a breach led to the theft of 5.4 million phone numbers and emails. The attacker exploited a login feature to create a scraped list of public user information. Twitter patched the vulnerability and encouraged two-factor authentication.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    OpenSea

    OpenSea experienced a data breach on Feb. 20. While this attack only affected 17
    users, the hackers made off with $1.7 million in crypto assets and leaked emails of
    OpenSea users. OpenSea was completing a migration, providing a perfect
    opportunity for a phishing attack. There is wide speculation that whoever caused
    this data breach tricked some OpenSea users to sign a contract partially, leaving
    some portions blank and thus making it possible for the bad actor to finish filling it
    out, calling for the creation of a new contract that, for free, transferred NFT
    ownership.
    Since the breach, OpenSea has remediated the issue by warning users about
    email phishing and implementing new security policies to make it harder to
    download customer data. They also terminated the employee they suspected to
    be working with the bad actor and reported the person to law enforcement.

    Cash App
    Cash App went public with a data breach on April 4. Losses included names and
    account numbers for more than 8 million users. A former Cash App employee
    downloaded reports that contained American users' personal information—
    specifically, users of Cash App Investing were affected. To address the issue, Cash
    App contacted all former and current users of the feature so they could answer
    the users’ questions and provide resources and information. They also notified
    law enforcement about the breach, and advised all users of Cash App to change
    their passwords and utilize two-factor authentication.

    Twitter
    On July 22, Twitter announced a data breach that resulted in the loss of 5.4
    million phone numbers and email addresses. The attacker exploited one of the
    microblogging platform's log-in identification features, which allows a user to
    submit a publicly known phone number or email address and match it to a Twitter
    account. The attacker was able to create a list that contained scraped emails and
    phone numbers from the accounts of users with publicly available information. In
    response, Twitter remediated the issue by patching the vulnerability, and it has
    also encouraged its users to use two-factor authentication for their Twitter
    accounts.

    You might also like