Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Scribd Logo
Upload

Welcome to Scribd!

  • 47 views

    Real Life Incidents of Network Security: Assignment #1

    Uploaded by

    fawad khan
    This document discusses real-life incidents of network security breaches experienced by four major companies: 1) Yahoo - In 2013 and 2014, Yahoo suffered breaches exposing 3 billion user accounts. 2) Marriott International - A 2014-2018 breach exposed personal details of 500 million Marriott customers. 3) eBay - A 2014 breach compromised names, addresses, dates of birth and passwords of 145 million eBay users. 4) Equifax - A 2017 breach exposed personal and financial details of 143 million consumers.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd

    Real Life Incidents of Network Security: Assignment #1

    Uploaded by

    fawad khan
    47 views3 pages
    This document discusses real-life incidents of network security breaches experienced by four major companies: 1) Yahoo - In 2013 and 2014, Yahoo suffered breaches exposing 3 billion user accounts. 2) Marriott International - A 2014-2018 breach exposed personal details of 500 million Marriott customers. 3) eBay - A 2014 breach compromised names, addresses, dates of birth and passwords of 145 million eBay users. 4) Equifax - A 2017 breach exposed personal and financial details of 143 million consumers.

    Original Description:

    rrea

    Original Title

    real life ancidents

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    This document discusses real-life incidents of network security breaches experienced by four major companies: 1) Yahoo - In 2013 and 2014, Yahoo suffered breaches exposing 3 billion user accounts. 2) Marriott International - A 2014-2018 breach exposed personal details of 500 million Marriott customers. 3) eBay - A 2014 breach compromised names, addresses, dates of birth and passwords of 145 million eBay users. 4) Equifax - A 2017 breach exposed personal and financial details of 143 million consumers.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    47 views3 pages

    Real Life Incidents of Network Security: Assignment #1

    Uploaded by

    fawad khan
    This document discusses real-life incidents of network security breaches experienced by four major companies: 1) Yahoo - In 2013 and 2014, Yahoo suffered breaches exposing 3 billion user accounts. 2) Marriott International - A 2014-2018 breach exposed personal details of 500 million Marriott customers. 3) eBay - A 2014 breach compromised names, addresses, dates of birth and passwords of 145 million eBay users. 4) Equifax - A 2017 breach exposed personal and financial details of 143 million consumers.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    You are on page 1of 3

    REAL LIFE INCIDENTS OF

    NETWORK SECURITY
    Assignment #1

    NAME 1: FAWAD KHAN


    ROLLNO 1: 1564034
    NAME 2: SAMIULLAH
    ROLLNO 2: 1564018
    SUBMITTED TO: PROF. ANWAR RASHAD
    TOPIC NAME: REAL LIFE INCIDENTS OF NETWORK SECURITY
    1. Yahoo
    Date: 2013-14
    Impact: 3 billion user accounts
    Details: In September 2016, the once dominant Internet giant, while in negotiations
    to sell itself to Verizon, announced it had been the victim of the biggest data breach
    in history, likely by “a state-sponsored actor,” in 2014. The attack compromised the
    real names, email addresses, dates of birth and telephone numbers of 500 million
    users. The company said the "vast majority" of the passwords involved had been
    hashed using the robust bcrypt algorithm.

    A couple of months later, in December, it buried that earlier record with the
    disclosure that a breach in 2013, by a different group of hackers had compromised 1
    billion accounts. Besides names, dates of birth, email addresses and passwords that
    were not as well protected as those involved in 2014, security questions and
    answers were also compromised. In October of 2017, Yahoo revised that estimate,
    saying that, in fact, all 3 billion user accounts had been compromised.

    The breaches knocked an estimated $350 million off Yahoo’s sale price. Verizon
    eventually paid $4.48 billion for Yahoo’s core Internet business. The agreement
    called for the two companies to share regulatory and legal liabilities from the
    breaches. The sale did not include a reported investment in Alibaba Group Holding
    of $41.3 billion and an ownership interest in Yahoo Japan of $9.3 billion.

    Yahoo, founded in 1994, had once been valued at $100 billion. After the sale, the
    company changed its name to Altaba, Inc.

    Read more about the Yahoo data breach...

    [ Prepare to become a Certified Information Security Systems Professional with this


    comprehensive online course from PluralSight. Now offering a 10-day free trial! ]

    2. Marriott International
    Date: 2014-18
    Impact: 500 million customers
    Details: In November 2018, Marriott International announced that cyber thieves had
    stolen data on approximately 500 million customers. The breach actually occurred on
    systems supporting Starwood hotel brands starting in 2014. The attackers remained
    in the system after Marriott acquired Starwood in 2016 and were not discovered until
    September 2018.

    For some of the victims, only name and contact information were compromised. The
    attackers were able to take some combination of contact info, passport number,
    Starwood Preferred Guest numbers, travel information, and other personal
    information. Marriott believes that credit card numbers and expiration dates of more
    than 100 million customers were stolen, although the company is uncertain whether
    the attackers were able to decrypt the credit card numbers.

    The breach was eventually attributed to a Chinese intelligence group seeking to


    gather data on US citizens, according to a New York Times article. If true, this would
    be the largest known breach of personal data conducted by a nation-state.

    3. eBay
    Date: May 2014
    Impact: 145 million users compromised
    Details: The online auction giant reported a cyberattack in May 2014 that it said
    exposed names, addresses, dates of birth and encrypted passwords of all of its 145
    million users. The company said hackers got into the company network using the
    credentials of three corporate employees, and had complete inside access for 229
    days, during which time they were able to make their way to the user database.

    It asked its customers to change their passwords, but said financial information, such
    as credit card numbers, was stored separately and was not compromised. The
    company was criticized at the time for a lack of communication informing its users
    and poor implementation of the password-renewal process.

    CEO John Donahue said the breach resulted in a decline in user activity, but had
    little impact on the bottom line – its Q2 revenue was up 13 percent and earnings up 6
    percent, in line with analyst expectations.

    Read more about the eBay data breach...

    4. Equifax
    Date: July 29 2017

    Impact: Personal information (including Social Security Numbers, birth dates,


    addresses, and in some cases drivers' license numbers) of 143 million
    consumers; 209,000 consumers also had their credit card data exposed.

    Details: Equifax, one of the largest credit bureaus in the U.S., said on Sept. 7, 2017
    that an application vulnerability on one of their websites led to a data breach that
    exposed about 147.9 million consumers. The breach was discovered on July 29, but
    the company says that it likely started in mid-May.

    You might also like