There were 3,205 cases of data compromises in the United States in 2023, affecting over 353 million individuals. Data breaches are only going to rise as more people move their data over to a digital ecosystem.
Cybercriminals steal data from organizations that collect it—banks, social media websites, and apps on your phone, among others. They use this data for financial gain in most cases. In this article, we discuss the biggest data breaches and cyberattacks of 2024 so far. Let’s jump right in.
There have been 700,095,520 known record breaches and 658 publicly disclosed incidents of data breaches in the first quarter of 2024.
A data breach can cost companies an average of $4.45 million in 2023 according to an IBM study. Factor in the cost of data breaches and you’ve got a massive amount of money leaking out of the system and into the hands of cybercriminals.
There have been multiple major data breaches in the first quarter of 2024. Below is a quick overview of these data breaches.
AT&T recently said hackers breached its systems and stole personal data of 7.6 million current and 65.4 million former customers, including sensitive information like Social Security numbers.
The breach initially surfaced in 2021 and recently resurfaced on the dark web. AT&T reset passcodes for the affected customers to mitigate the impact, but if you suspect that were impacted, it’s best to take proactive measures to minimize the damage.
On January 2, The Guardian reported that a cyberattack on Victoria’s court system had given hackers access to several weeks of recorded hearings. Fortunately, employee or financial data wasn’t compromised.Soon after the attack was discovered, Court Services Victoria (CSV) started working on restoring the affected network and reinforcing security measures across the court and tribunal-wide technology systems.
In January 2024, Have I Been Pwned emailed users warning that there was a data breach impacting 15 million Trello users. The email claimed the data—including emails, usernames, and other account information—was scraped from Trello and posted for sale on a popular hacking forum.
Atlassian, Trello’s parent company, stated that there was no evidence of unauthorized access to Trello’s systems. However, Trello advised that users review privacy settings, use strong and unique passwords, and enable 2FA.
Anthropic confirmed on January 29 that it suffered a data leak when one of its contractors sent a file with sensitive information to an unauthorized third party by mistake. The leaked data included names and accounts receivable information as of December 31, 2023.
Anthropic sent a letter to its customers explaining the situation and highlighting that it was a human error rather than a breach of Anthropic’s systems.
In February 2024, Bank of America (BofA) announced that 57,028 customers were affected by a data breach. A ransomware attack at Infosys McCamish Systems, a financial service provider and BofA partner, caused the breach. Infosys McCamish said it can’t determine what personal information the threat actors accessed.
However, they may have accessed information about deferred compensation plans, including names, social security numbers, and dates of birth.
Fujitsu noticed it had become a victim of a cyberattack after it found a collection of malware on its work computers in March 2024. The company’s statement lacks clarity about:
Footwear firm Vans sent its customers a letter on March 20, 202, to inform them about a recent data breach. The company warned its customers that they may be at risk of fraud and identity theft. The exposed information could include the full name, email address, phone number, billing address, and shipping address.
However, the letter also claims that no detailed financial information or passwords were exposed.
There were plenty of other attacks across the globe in 2024. While they weren’t as big as the ones we discussed in the previous section, they did involve some major companies.
Here are some other noteworthy data breaches of 2024 so far:
Here are some key 2024 data breach statistics:
The Yahoo data breach remains the biggest data breach in history. The breach impacted over 3 billion user accounts. The attack struck in 2013, followed by multiple attacks over the next three years.
The Yahoo data breach included personally identifiable information, such as:
It’s natural to worry about your data’s safety. If you’re not taking preventive measures to protect your privacy, you could end up losing your data or, in worst cases, your money. Here’s what you can do to protect yourself from data breaches in 2024:
Use an online privacy solution like Cloaked to store information. Cloaked protects your personal identity from, well, everyone.
Cloaked allows you to generate a new identity for any online use case—your Cloaked identity includes a name, phone number, email, and more. All messages and calls received to your secondary phone number are forwarded to your primary number.
Similarly, emails sent to your secondary email are forwarded to your primary one. You can create as many identities as you need—never share your real information and protect yourself against data breaches.
Plus, Cloaked also helps share private information securely, so you never have to send confidential information via text or email—remember, even Outlook can get nosy.
Of course, Cloaked doesn’t stop there…
A password manager generates and stores complex passwords for your accounts. Storing your passwords eliminates the need to remember them. It also reduces the risk of using weak passwords susceptible to brute-force attacks or using the same password across multiple accounts.
Cloaked users have access to a secure password manager where they can create, save, and share passwords securely. Whenever you’re trying to log into a website, Cloaked springs into action and autofills the credentials securely. Alternatively, you can choose to securely share credentials with a trusted third party.
It’s helpful to periodically check if you’ve been breached, even without any major cause for concern. This ensures you can catch a breach early and can potentially help you with damage control.
Fortunately, there are multiple services to verify if your data has been compromised. Websites like Have I Been Breached search across multiple data breaches to see if your personal information—phone number, email, or address—appears in any of the breaches.
Only share personal information that’s necessary. Check the settings section of all the platforms and apps you use. Restrict the platform or app from collecting personal data. Change the settings to restrict who can view your personal information.
Most importantly, make sure you never share personal information such as your address, phone number, or financial information. Being selective about what you share online minimizes the risk of your data falling into the wrong hands.
If you need to share sensitive information with a trusted person, avoid sharing it via email or text. Use Cloaked: the app has a built-in option that allows you to securely share information, greatly minimizing the risk of a breach.
Keep an eye on credit reports for any suspicious activity that could indicate a data breach. 95% of breaches are about money according to a study by Verizon. This is hardly surprising, but it does indicate that you can monitor most data breaches just by setting up alerts for changes in your credit file.
For example, if new accounts are opened in your name or if there’s a significant change in your credit score, it’s worth investigating.
If you’re a business, consider signing up for an identity theft protection service that provides comprehensive monitoring of personal information across multiple databases and alerts you about potential threats.
Experiencing a data breach can be stressful, but taking quick action is vital to minimize its impact and protect yourself against further harm. Follow these steps if your personal data has been compromised in a breach:
Contact the affected company to ask what information was stolen or refer to their statements or notifications for details on the breach. The most common information stolen during a breach includes usernames, passwords, credit card numbers, social security numbers, and other sensitive data.
Gathering some basic information about the breach’s scope helps you assess the risks and take appropriate corrective action to secure your personal information.
AutoCloak helps you change old profile information on platforms you’re already using, including your username, password, and phone number. There’s little manual effort—sign up for Cloaked, set up your account, click on your profile icon at the top-right, and select AutoCloak identities.
Select the website where you want to change your login information and click on the AutoClick identity button. If you run into any problems, read our extensive AutoCloaking guide.
Cybercriminals generally steal personal information for financial gain. This means if your data was compromised, you’ll likely see suspicious activity in your credit card or bank statements. Consider signing up for a credit monitoring system if you’re a high-net-worth individual or a business to receive real-time alerts for changes to your credit file.
Following best practices can protect you against data breaches. The good thing? It doesn’t take much effort to follow best practices.
Cloaked is a privacy-first platform that helps you generate new identities and securely store passwords. This ensures none of your phone numbers or emails can be linked to you.
Make your data invisible by generating unlimited identities.