1. MOVEit:
The MOVEit Managed File Transfer application suffered a massive data breach impacting 77 million individuals globally. The breach, attributed to the CLOP ransomware gang, involved exploiting a security flaw, leading to confidential data being leaked from over 2,600 companies, including notable U.S. entities like the Department of Energy and several universities.
2. Ticketmaster:
In May 2024, Ticketmaster experienced a breach where hackers leaked over 560 million customer records. The compromised data included order history, payment information, names, addresses, and email addresses. This incident has led to significant scrutiny, with the Justice Department preparing to file an antitrust lawsuit against Live Nation, Ticketmaster’s parent company.
3. Dell:
Dell was targeted by a cyberattack in May 2024, resulting in the potential exposure of data belonging to 49 million customers. The hacker exploited partner accounts within Dell’s portal, executing a brute-force attack that went unnoticed for nearly three weeks. Sensitive customer information, such as home addresses and order data, was compromised and later put up for sale on hacker forums.
4. AT&T:
A significant data breach at AT&T affected 7.6 million current and 65.4 million former customers. The stolen data, which included sensitive information like social security numbers and account numbers, was from a dataset that appeared on the dark web in March 2024. This breach follows another significant leak in 2023 that impacted nine million users.
5. Trello:
In January 2024, Trello, an online project management tool, was breached, resulting in the exposure of 15 million user records. The data, including emails, usernames, full names, and other account information, was listed for sale on a hacking forum. The breach was linked to the misuse of a public API, prompting Trello to tighten its API security measures.
What Should I Do to Protect My Website
You can choose a web application firewall to help protect web apps by filtering and monitoring HTTP traffic between a web application and the Internet.
SafeLine is a self-hosted WAF(Web Application Firewall) to protect your web apps from attacks and exploits.It typically protects web apps from attacks such as SQL injection, XSS, code injection, os command injection, CRLF injection, ldap injection, xpath injection, RCE, XXE, SSRF, path traversal, backdoor, bruteforce, http-flood, bot abused, among others.
For starters, you can choose SafeLine Free Edition to begin your security defense for your websites. For users who have budget, it's better to install SafeLine Pro.
Website:https://waf.chaitin.com/
Github:https://github.com/chaitin/SafeLine
Discord:https://discord.gg/wVyX7vDE
Top comments (0)