1) In March 2018, hackers gained access to Telegram messenger and email data of some big names in the cryptocurrency business. Hackers used Signaling System 7 (SS7), which is used for connecting mobile networks across the world, for hacking the data. The hackers were most probably after two-factor authentication (2FA) login codes. They spoofed the short message service center (SMSC) of mobile network operators to send a request on location updates to at least 20 targeted highprofile victims. This attack is believed to have occurred to obtain cryptocurrency.

2) Zoom experienced several security incidents, notably the approximately 500,000 user accounts that emerged for sale on a dark web forum. Reportedly, the accounts were obtained by using user IDs and passwords that were exposed in previous breaches, which is also known as credential stuffing. Hackers could then gain access to important personal or corporate information that should have been kept secure. Plus, Zoom codes were easily guessable, so users could join meetings without an invitation and interrupt or share inappropriate materials, also known as Zoom bombing.

Summarize the attack surface, type of attack, risk, impact, asset and more. Suggest and develop 1 Network Security Monitoring that can kelp mitigate both case above.