More Security – News :Mail-Chimp, Statistic
18. August 2022More Security – News :Mail-Chimp, Statistic
18.8.2022
Researchers warn of a newly discovered security vulnerability at MailChimp that has exposed customers‘ email addresses. Some of the users have received password reset requests without their consent.
The vulnerability was tracked down after a company was unable to access its MailChimp account two weeks ago. Contacting MailChimp yielded a notice that they had closed the account as a security measure. Shortly thereafter, the affected company received a password reset email, even though it had not initiated anything.
In total, 214 accounts were hacked, with the attackers using phishing and social engineering as threat vectors. The hackers attacked victims through an email domain known to be used for illegal activity.
Here’s a sampling of recent statistics:
Nearly 7 million Internet users have attempted to download malware-infected browser extensions since 2020. 70% of hacking campaigns used adware as a threat vector.
More than 4.3 million people were targeted with adware hacking campaigns between January 2020 and June 2022. The statistics are part of a research publication by Russian antivirus company Kaspersky.
Since the figures only include Internet users who use antivirus software, the actual number of people attacked with adware is likely to be much higher.
The most common malware of this type is „WebSearch“ and „AddScript“. The software is written in Javascript and targets those who want to download videos, while other popular malware targets users who want to convert PDF and Word files.
The number of multi-stage phishing attacks increased by 625% in the second quarter of 2022. Multi-step attacks are known to be more complex and involve phone numbers, emails, and direct communication with the target. The findings were published in a report released by security researchers. These attacks, also known as vishing, accounted for 25% of the total number of response-based scams.
Other types of attacks include 419 scams at 54%, business email compromise at 16% and job scams at 5%.
Gmail was the most frequently hacked email service, with 72% of cases affecting users of the email service.
73% of BEC attacks in the second quarter were launched via free webmail.
