As technology advances, so do the methods of cybercriminals. Today’s hackers are more sophisticated than ever, exploiting new vulnerabilities and breaking through security defenses with alarming precision. From ransomware to massive data leaks, no industry is safe. The stakes are higher than ever, and businesses must stay informed to protect their data and reputation.
Below, we dive into the top 10 cyberattacks and data breaches of 2024, a sobering reminder of the evolving threat landscape.
- Ticketmaster Hit with $500K Ransom
What started as a seemingly small breach affecting fewer than 1,000 users quickly escalated into a major cyber crisis. Shinyhunters, a notorious hacking group, claimed responsibility for breaching 560 million accounts. The group demanded a $500,000 ransom, threatening to sell the stolen data if their demands weren’t met.
The breach compromised personal details, including email addresses, phone numbers and even encrypted credit card information. This attack highlights how even large, well-established companies like Ticketmaster can fall victim to highly organized cybercriminals.
- Lehigh Valley Pays $65M for Cancer Patient Leak
One of the most disturbing breaches of the year involved Lehigh Valley Health Network, where hackers exposed highly sensitive medical information. The breach included images of 600 cancer patients, a particularly cruel exploitation of vulnerable individuals. The leaked images led to a $65 million settlement in a class action lawsuit.
This attack shows the devastating impact of healthcare data breaches, where patient privacy is compromised in the most heart-wrenching ways. It serves as a wake-up call to healthcare organizations everywhere to reinforce their cybersecurity measures.
- Bank of America Leak Exposes 57K Clients
Bank of America wasn’t immune to cybercrime this year, with 57,000 clients’ sensitive data stolen by the LockBit ransomware group. The breach occurred through Infosys McCamish Systems, a financial software provider, exposing client names, addresses, dates of birth, and Social Security numbers.
Such information can be used in identity theft, fraud and other criminal activities, demonstrating the far-reaching effects of breaches in the financial sector. The involvement of a third-party provider also underscores the importance of securing the entire supply chain.
- BingX Loses $44M in Crypto Heist
Hackers stole $44 million from Singaporean crypto platform BingX, targeting the company’s wallets in one of the biggest digital heists of the year. The breach occurred just before BingX announced “wallet maintenance,” suggesting that the hackers timed their attack to exploit a vulnerability in the system.
This breach not only highlights the growing trend of cybercriminals targeting cryptocurrency platforms but also the need for more robust security measures to protect digital assets.
- Slim CD Breach Affects 1.7M Consumers
Slim CD, a Florida-based payment processor, suffered a breach that exposed the personal data of 1.7 million consumers across the US and Canada. The breach, which lasted from August 2023 to June 2024, put credit card information, personal details and transaction histories at risk.
What’s particularly concerning is the prolonged exposure, leaving customers vulnerable for nearly a year before the breach was discovered and addressed. This attack highlights the need for continuous monitoring and quick response to potential threats.
- Dell Breach Exposes 49M Customer Records
Even tech giants aren’t immune to cyberattacks. In 2024, Dell confirmed that 49 million customer records had been compromised, including home addresses and order details. This breach demonstrates how even trusted technology providers can become vulnerable targets.
With such vast amounts of data at risk, companies like Dell must invest in stronger encryption methods and better security protocols to protect their customers.
- Change Healthcare Forks Over $22M
Healthcare organizations remained a top target for ransomware attacks in 2024, and Change Healthcare was no exception. A failure to implement multi-factor authentication (MFA) on one of its servers left the company vulnerable to a ransomware attack that compromised the sensitive information of 131 million patients.
To regain control, Change Healthcare was forced to pay a staggering $22 million ransom to the Russian-based BlackCat group. This incident emphasises the importance of basic security measures like MFA in safeguarding sensitive patient data.
- AT&T Breach: 110 Million Records Stolen
In their second breach of the year, AT&T faced the loss of 110 million records, which included personal details like phone numbers and approximate locations. What’s alarming is the scale of the breach—affecting both customers and non-customers alike.
This type of attack highlights the growing risks for telecom companies as they continue to handle ever-increasing amounts of sensitive data. AT&T’s security failures serve as a cautionary tale for all industries reliant on large-scale data storage and management.
- FBCS Loses 4.25M Records
Financial Business and Consumer Solutions (FBCS), a debt collection agency, was hit by a breach that exposed 4.25 million records. Hackers stole names, birth dates, Social Security numbers and other sensitive personal details.
Given the nature of FBCS’s business, the consequences of this breach could be severe, with affected individuals potentially facing identity theft and financial fraud. The incident underscores the critical need for industries dealing with highly sensitive data to employ the most stringent security measures.
- NPD Breach: 2.9 Billion Records Gone
Rounding out the list is the National Public Data (NPD) breach, one of the largest data leaks in history. 2.9 billion records were compromised, exposing full names, addresses, birth dates and Social Security numbers.
With almost half of the world’s population affected, this breach is a stark reminder of the global reach and devastating scale cyberattacks can have. The breach has sent shockwaves across industries, proving that no organization is too big to fail when it comes to data security.
Strengthen Your Defences
These attacks reveal the sheer scale of cybercriminal activity in 2024, with businesses across industries falling victim to increasingly sophisticated threats. No matter the sector—healthcare, finance, tech or retail—the need for robust cybersecurity measures has never been more critical.
Organizations must stay vigilant, keep their systems updated, and educate their teams about the latest threats. As cybercriminals grow bolder, staying informed is the first step toward staying secure.
Partner up with Insentra to keep your business protected against cyberattacks. Our Secure Workplace services minimize the threat of security breaches by reducing the attack surface and give your business the assets and solutions to enable a secure workplace where employees can work from anywhere on any device.
Contact us today to book a consultation on how you can improve your security posture!