About Me

My name is Paolo Passeri, and I was born 44 (sigh!) years ago in Senigallia, a charming town on the Adriatic coast (County of Le Marche) known for its Velvet Beach. After graduating in (astro)physics from the University of Milan, I moved to Rome and began to cut my teeth on networks and security in Matisse SPA and later in Telindus.

I have been working steadily on computer security industry for more than 15 years. Currently I am a Principal Sales Engineer at OpenDNS.

After a youth spent fiddling with a ZX Spectrum (16K), the real attraction for networking (and later for security) would break out after many years, in a completely random manner, when I was studying black holes (we were talking about attraction, weren’t we?) at CNR (National Research Council) of Milan. With great surprise I discovered to be more attracted by the animated S of the Mosaic browser, used without any knowledge to browse the catalogs of the Hubble telescope, rather than by black holes and neutron stars that I should have studied.

View Paolo Passeri's LinkedIn profile View my LinkedIn profile


72 thoughts on “About Me”

  1. Hello,

    Thanks for the nice work (one-year-of-android-malware-full-list)!
    By the way, the ZX Spectrum was part of my beginnings with such devices as well.
    Greetings from Japan.

  2. Hello Paolo
    Thank you very much for your posts, ideas and contribution with the timeline.
    Im enjoying this site more and more day after day :).Keep up the great work.

  3. Hi Paolo

    Just to let you know that I now officially use your blog as my primary source of information for my monthly rapport. If you want to know more email me as I can’t openly disclose much

  4. I’d like to useone of your charts in a paper that I’m writing. How can i request permission to use it? it’s the infographic on notable cyber attacks against aviation industry.

    1. Hi Paolo,i am doing a masters project in digital forensic,how can i get the da ta that was used to derive the daily trend of attacks graph, i need for my research.

      Thank you

  5. Hi Paolo,
    I just realized who is the author of this blog, and not only want to thank you for this bright idea you’ve built and grown. I am also surprised to see how close you are! Have been working with Business-E for a while as I have been in a major Telco SOC managing SIEM and Trendmicro solutions for which Business-E was reseller and trainer.

    Nice to see how a simple but focused project can be so effective!

    Really awesome work!

    Cheers,
    regards,
    Fabrizio

  6. Hi
    I’m a student of university of Liverpool and I’m now working on my dissertation about hacktivism. I’m really like your work. it’s very helpful.Is there any possible you can tell me how you get those data? And is these data accurate and complete?and can I use these data in my work?

    1. Hi Leon,
      the source of the data of the timelines are reported at the bottom of each timeline. The source of the stats are the corresponding timelines. I guess the data is accurate since I rigorously quote the source. Of course it cannot be complete since (I clearly state this), however hopefully indicative of the Cyber Landscape. You can do whatever you want provided you quote the source :) If you also want I will be glad to share the raw data.

      1. Hi,
        I‘’m glad that you replied so quickly, thank you for share the raw data with me it would be very helpful. here is my e-mail address :[email protected]
        thank you again.

  7. Paola, Wonderful blog and a fantastic source of information. I am working on a college paper for my information security class and wanted to do a deep dive analysis on some of the data you have collected. Based on the conversations above and in your blog you are very generous in sharing your data. I wanted to request a copy of the raw data if possible. I will be sure to properly quote you as the source and reference the blog for all instances the data is used. my e-mail is [email protected]. Thanks!

  8. Hi Paolo,
    Great site – it came recommended in a presentation I attended recently. By any chance is the timeline available in clear text (as opposed to an image) anywhere? I ask because I’d love to setup a Google alert for whenever my industry ever shows up in the timeline.

  9. Thank you for compiling this critical data regarding cyber attacks. Is there anywhere I can get access to this data in a spreadsheet format to attempt to perform some statistical analysis?

    Thank you,

    Joe Yacura

  10. Thanks for your excellent information on Infosec and cyber attack time line, I am your regular reader and use your data in many of my cyber security conference presentations and always acknowledge you in my presentation slides. .. Regards .. Abbas Kudrati.. from Kuwait and Melbourne

  11. Thanks for great Info. I would like to establish contact and talk about our work at ENISA (ENISA Threat Landscape). Would be great if you could contact me per mail. Thanks, Louis

  12. Hello Paolo, I would like to join those who very much appreciate your work. I have the same wish like many others – is it possible to get data in a spredsheet ? And the rest of the last year Sep – Dec 2013 ? I would like to make analyses of attacks to special business sector. Looking forward to your answer to my email.

  13. Great site. As a researcher, I found your timeline fantastic. If I could offer one suggestion, would it be possible to make searches based upon suspected country of origin/country attacked, victim/suspected attacker? I tried to use the search bar, but, alas, I must not be that clever.

    Keep up the outstanding work.

  14. Paolo:

    We are publishing a report on defense and security trends and would like to cite you as a source on cyber attacks. I was hoping to get the source data for 2012 and 2013 in whatever format you have available. Basically our report breaks down countries into four categories so I would like to do the same with your data. Please see my email in the details of this post. I am happy to provide you with a copy of last year’s report. Of course, your data would be properly sourced to you and this website.

    Please let me know if I can get a copy. Feel free to email me with any questions!

    Regards,

    Bud Roth

  15. First of all many many thanks for your work.
    Then a request 😉
    Have you got or can you point me to statistical data about cybercrime in Italy (es Polizia Postale data on ransomware, identity theft and so on)?
    I’ve searched on italian law enforcement sites with no success :(

  16. Hi Paolo,

    I am putting an internal slide deck with a slide on web attacks and I really like your monthly graphics. I would like to use your data for the last few years to show the trend. I will add you as source for people to come to your site. Can you give me access to the raw data?

    Thanks!
    Emilio.

  17. Hi! I am working on an undergraduate thesis and am having an incredibly hard time finding statistics that show cyberattack trends over the last couple of years. Your site is very helpful however i was wondering how you acquire your statistics? Would love to use you as a source but i am not sure i can. Also do you think there is a lack of information released regarding state sponsored cyber attacks? Or lack of information regarding successful breaches in government systems? If you could maybe point me to some useful sources that would be awesome. My thesis is due tomorrow so i am really trying to beef up my statistics as that is the part i am noticeably lacking in

    1. Dear Marissa, the stats are taken from the timelines that I publish (almost) on a bi-weekly basis. On the bottom of each timelines the source are reported. I collect each month the most remarkable attacks according to me. However you could try to have a look to datalossdb.org and hacksufer.com.

      Good Luck!

  18. Dear Paolo,
    You have done great job, absolutely outstanding! Thank you very much. I just want to download your data in spreadsheet like in csv format or any format for analysis purposes. I’m a PhD student at Sheffield Hallam universtiy in cyber security. I would appreciate if can get access to your raw data. Again thanks for your amazing work.

    Best wishes.

    Sina.

  19. Dear Paolo,

    Amazing and super fascinating work! Thank you, so much for publishing this. I’m working on a project trying to understand the shift in the type of cyber attacks over time. If you could share the link to the raw historical data in .csv or similar format, that would be very much appreciated. My email is timpj(at)stanford[dot]com.

    Thanks!

    Best regards,
    Tim

  20. Paolo,

    Could you please send me the raw data of cyber attacks? This definitely pertains to my field and it may greatly assist my team!

  21. Hi Paolo, i am very appreciate for your working… Could you send me the raw data of cyber attacks so that I can filter for a specific attack category? If you do, I will be very appreciate.

    Regards,
    Summer Tong

  22. Hi Paolo,
    Thank you very much for your time and dedication to security. If possible, I would like to request the raw data. I am a doctoral student focused on data breaches and cyber attacks, and this would be very helpful for my research. Thanks in advance.

    Best,
    Bill

  23. Hello Paulo,

    I admire your work and assess it very high. I am a PhD student at the University of Shumen and deal with the problems of computer security. As many other colleagues, I would like to ask whether it is possible to using your data for my dissertation and use your raw data? I would be very grateful and will be happy if I can and I can help with something.

  24. Hi Paolo,

    Very nice website, and I like the monthly update on cyber attacks. I have one important question however. In the field ‘Attack Techniques’, most of which are understandable as the methods with which attackers broke the security (eg, SQL for data leakage, MITM to hack communications), you list ‘Defacement’ as an attack technique. Perhaps I am missing something, but although this may have been the purpose of an attack, I can’t see it as the technique for the attack itself. Although the purpose of the attack is important to know, you seem to cover these in another of your analyses (Motivations behind attacks). I wonder if you could explain, is there a reason to include ‘Defacement’ as a category here?

    Keep up the hard work. Thanks,

    Mustafa

    1. Mustafa, your are right. Unfortunately it is an approximation, since in many case the source does not provide the underlying reason but just the effect. If you have any idea is well accepted.

      1. Paolo, thanks for replying. My opinion is that if the effect is unknown, it should be categorised under ‘unknown’. This is to maintain consistency in all categories, since you already have motivations in other data you produce, and the current method mixes the technique and effect together. But that is just my opinion, I still think its a great resource.

        Thanks,

        Mustafa

  25. Hi Paolo,

    I am very much enjoying the data available on your website, some of which is useful for a project we are currently working on. Do you happen to have any graphs or statistics which cover the evolution of cyber attacks over the last 25 (or longer) years?

    Keep up the good work!

    Cheers,

    Iwan

  26. Hi Paolo,

    This work is fantastic. Would it be possible for you to provide the raw data of cyber attacks? I would like to do further analysis on the attack category, target, and region.

    Thanks,

    Mike

  27. thanks a lot, it’s really great work, Would it be possible to have the raw data 2011-2015 for my theses please, because I want to look for a specific country.

  28. Not sure if this is intentional or not, but you posted on your January timeline that Pay Ivy .com was compromised and 10,000 passwords were dump in plain text. There are no proof to back this up. PayIvy didn’t even have 10,000 users back in January 2015 and any business with some common sense wouldn’t put password in plain text. Also there is no proof whatsoever this has ever happened. I would advice you to check and verify your sources before publishing them.

  29. Hi Paolo,

    Forgive me if you’ve seen this post twice. I’m right now doing a report on remote access Trojans. It would be great to get some new information and include you as an expert in our report. Would you be interested in discussing further? If so, how could I reach you?

  30. This is great information and thank you for providing. However, do you happen to have the aggregated quarterly or annual statistics, as opposed monthly?

    1. I can give you the raw data from where you can derive the needed information, i just need a gmail address.

  31. Incredible job ! Congratulations on your research and patience. It is impossible to find similar information as on your site!

  32. Hi Paolo,
    Your work is amazing! IEveryday i am looking for hackmageddon. I have a question: whats with the Hacks of June? I’m missing them…

    1. Unfortunately I am late this month, I am working on it though. The stats be available early next week.

      Paolo.

  33. Hello, my name is Dillon. First, I’d like to applaud you on your work. From all my searches you have the most comprehensive listing of cyber incidents that I have seen. Second, I am a student at the University of Pittsburgh’s Graduate School of Public and International Affairs. We are currently working on an online searchable cyber attacks database (not dissimilar from the Global Terrorism Database if you’re familiar) and I was wondering if we could use your data? You would obviously receive the credit and I would personally make sure your name and website are published to our database. It would definitely be a huge help!

    Best,
    Dillon

Leave a Reply

I know with what weapons World War III will be fought…

%d bloggers like this: