Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cloud Security

60% of Major US Firms Have Been Hacked in Cloud: Study

Hackers have penetrated cloud computing networks of some 60 percent of top US companies, with virtually all industry sectors hit, security researchers said Tuesday.

Hackers have penetrated cloud computing networks of some 60 percent of top US companies, with virtually all industry sectors hit, security researchers said Tuesday.

Researchers at the enterprise security firm Proofpoint said they detected over 15 million unauthorized login attempts to cloud computing networks of US Fortune 500 firms in the first six months of 2019, of which 400,000 were successful.

“While it only takes one compromised account to achieve wide-ranging effects in an organization, attempted unauthorized logins were pervasive across industries,” Proofpoint researchers said in a blog post.

In analyzing some 20 million user accounts in more than 1,000 cloud deployments, the study found 92 percent of the Fortune 500 companies surveyed were targeted by cyber attacks.

It found 60 percent of the companies had allowed attackers into their cloud networks and six percent had an unauthorized login to an executive account.

Attackers appeared to target all sectors, the researchers said, but appeared to be more successful in education and food and beverage sectors. Regulated industries such as healthcare and financial services fared better, with “significantly lower rates of successful attacks,” Proofpoint said.

Sales representatives and managers appeared to be most frequently targeted, possibly because their emails tend to be publicly available and their positions give them wide-ranging access.

Proofpoint said when attackers gain access, this often leads to “lateral expansion” — such as spamming or phishing to get even deeper access to networks, and “large credential dumps” that can allow more cybercriminals to access the compromised networks.

Advertisement. Scroll to continue reading.
Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

CISO Conversations

SecurityWeek talks to Billy Spears, CISO at Teradata (a multi-cloud analytics provider), and Lea Kissner, CISO at cloud security firm Lacework.

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online.

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...