Cybersecurity is a major concern for businesses and organizations in the digital age, as cybercriminals constantly seek to exploit vulnerabilities and steal sensitive data. The month of September 2023 witnessed several cyber breaches that affected various sectors and industries around the world, causing significant losses and damages. Here are some of the top cyber breaches that made headlines in September 2023:
MGM Resorts
MGM Resorts, the American resort, casino and hotel chain, suffered a massive cyber-attack that resulted in widespread disruption across its hotels and casinos, shutting down its internal networks as a precaution. The ALPHV ransomware affiliate claimed responsibility for the attack, which paralyzed the company’s ATMs, slot machines, room digital key cards and electronic payment systems. The attackers demanded a ransom of $50 million in Bitcoin to restore the company’s operations and prevent the leak of stolen data, which included customer information, financial records and employee details. MGM Resorts did not confirm whether it paid the ransom or not, but said it was working with law enforcement and cybersecurity experts to investigate the incident and restore its services.
Airbus
Airbus, the European aerospace giant, disclosed a data breach that potentially resulted in the exposure of 3,200 sensitive Airbus vendors’ contact information, including names, addresses, phone numbers and email addresses. The breach was claimed by the notorious ransomware group called Ransomed that have targeted many companies with ransomware attacks during September 2023. The group said it had encrypted Airbus’ files and threatened to publish them online if the company did not pay a ransom of $25 million in Bitcoin within 72 hours. Airbus said it had notified the affected vendors and taken measures to secure its systems and data.
Save the Children International
Save the Children International, the world’s leading non-profit organization for children’s rights and humanitarian aid, reported a cyber-attack that compromised its email system and exposed personal data of its staff, donors and beneficiaries. The attack was carried out by a hacker group called DarkSide that claimed to have stolen more than 1 terabyte of data from the organization, including names, email addresses, phone numbers, passport numbers, bank account details and health information. The group demanded a ransom of $10 million in Bitcoin to delete the data and stop leaking it online. Save the Children International said it had notified the relevant authorities and individuals and was working to contain the impact of the breach.
Conclusion
The cyber breaches of September 2023 highlight the importance of cybersecurity and the need for constant vigilance and protection against cyber threats. The breaches affected various sectors and industries, exposing sensitive data and disrupting critical services. The breaches also showed the sophistication and persistence of cybercriminals, who used ransomware and other malicious techniques to extort money and cause damage. The breaches underscore the challenges and risks that businesses and organizations face in the digital age, and the need for effective collaboration and coordination among stakeholders to prevent and respond to cyber incidents.
