It has become the old story now; cybercriminals steal users’ information, and customers or members are notified by hosting or social media websites. The customer’s situation is a complete mess; they shared the details with complete trust, and how such big websites get compromised. Wasn’t their security enough to stop hackers? The situation becomes salacious when they know that the hacker’s group is anonymous.
The companies claim the complete security of their user’s data and promise that they won’t be sharing or selling with 3-party companies without the user’s consent. But what if hackers breach the data? Why don’t companies take security as the topmost priority to stop such breaches? After the data gets compromised, news often comes out from such companies that the cyber security team has taken remedial action and then starts assuring customers with high priority security and privacy. The worst is when companies don’t know about such leaks for even months.
The mysterious online hacker community Anonymous always remains in news headlines. In February, a Twitter account with 7.9 million followers named “Anonymous” declared a “cyberwar” against Russia and its president, Vladimir Putin. The group claimed responsibility for cyberattacks that disabled websites and leaked Russian government agencies, state-run news outlets, and corporations’ data.
The Anonymous hacktivists employ coordinated cyberattacks against various world governments, corporations, or other groups, often in the name of social or political causes. On March 6, 2022, Anonymous claims to have hacked into the Russian streaming services Wink and Ivi (like Netflix) and live TV channels Russia 24, Channel One, and Moscow 24 to broadcast war footage from Ukraine. But that doesn’t make them heroes. Let’s have a look at their past deeds.
On November 17, 2021, Godaddy, an Internet domain and web hosting company based in New York, revealed a hack on September 6, 2021, which exposed its 1.2 million customers’ emails and numbers, putting them at risk of phishing attacks. An attacker sends a fraudulent message designed to trick the victim into giving them sensitive information. The company filed an incident report with the Securities and Exchange Commission (SEC) stating that it had identified ‘suspicious activity in its Managed WordPress hosting environment by an unauthorized third party. They immediately began an investigation with the help of an IT forensics firm and contacted law enforcement. SSH File Transfer Protocol, a network protocol that provides file access, transfer, and management over a data stream, and database usernames and passwords got exposed for active customers. The company immediately blocked the unauthorized third party and reset both passwords.
The company spokesperson said: ‘We, GoDaddy leadership and employees, take our responsibility to protect our customers’ data very seriously and never want to let them down. We will learn from this incident and are already taking steps to strengthen our provisioning system with additional layers of protection.’
Why are hackers so high? Can they impact thousands of websites and bring down businesses? Even with so many protections, firewalls, anti-malware, anti-viruses, and best security, how the hosting accounts get compromised still is beyond one’s thinking.
It’s not only Godaddy; almost every big company is the target of hackers. Amazon’s Twitch, a video streaming service, suffered a data leak after an anonymous hacker posted a computer file containing a vast amount of data for the public to access. Users Called ‘Disgusting Toxic Cesspool’ in a post on 4chan by a hacker. CNBC reported that the data leak included details on payments to content creators and an unreleased product from Amazon Game Studios.
Most companies use two-factor authentication (2FA), but not all their customers or members use the same. The companies always recommend changing passwords periodically. It’s time for users to know the difference between public and private information, ‘what to be shared and what not to be.’ Undoubtedly, the threats of cybercriminals will remain in the future also, but it’s the company’s and user alertness that can minimize hacking possibilities.