eBay Data Breach
The eBay data breach is one of the real-world illustrations of the need for information and network security within a corporate network. eBay is a well-known online auction platform with a global following.
In 2014, eBay revealed that it had suffered a significant data breach that exposed sensitive information. This attack is thought to have affected 145 million subscribers.
The data breach, according to eBay, exposed the following:
- Customers' names
- Encrypted passwords
- Email address
- Postal Address
- Contact Numbers
- Date of birth
eBay's database containing financial information such as credit card numbers and other financial information is said to be kept in a separate and encrypted format.
The eBay data breach was caused by hackers compromising a small number of employees' credentials via phishing between February and March of 2014. Specific employees may have been targeted in order to gain access to eBay's network, or the eBay network may have been completely monitored and then compromised.
Google Play Hack
"Ibrahim Balic," a Turkish hacker, hacked Google Play twice. He admitted responsibility for the Google Play attack. It was not his first attempt; he admitted to being the mastermind behind the Apple Developer site attack. He investigated vulnerabilities in Google's Developer Console and discovered a flaw in the Android operating system, which he tested twice to ensure that it was causing crashes again and again.
He created an Android application to exploit the vulnerability based on the results of his vulnerability testing. Users were unable to download applications, and developers were unable to upload their applications, when the developer's console crashed.
The Home Depot Data Breach
Theft of information from payment cards, such as credit cards, is a common occurrence nowadays. Home Depot's Point of Sale Systems were compromised in 2014. On September 8, 2014, Home Depot issued a statement claiming a breach of their systems.
The attacker obtained third-party vendor login credentials and gained access to the POS networks. A zero-day vulnerability in Windows was exploited, creating a loophole to enter Home Depot's corporate network and create a path from the third-party environment to Home Depot's network.
Memory Scrapping Malware was released after gaining access to the corporate network, and it then attacked the Point of Sale terminals. Memory Scraping Malware is extremely capable; it stole the information from millions of payment cards.
Home Depot has taken several counter-measures against the attack, including the use of EMV Chip-and-Pin payment cards. These Chip-and-Pin payment cards have a security chip embedded in them to prevent duplication with magstripe.
Join our Social Media 📺 For Latest updates
