Last Updated on January 23, 2016
I was delivering to Anthem the very unwelcome prize for the first massive breach of 2015, when the Operation Carbanak has brought an unexpected tail to this first half of February.
These two events have undoubtedly characterized this timeline and overshadowed all the others: on one hand, a massive cyber attack (allegedly carried on by Chinese hackers) targeting one of the largest US ensurers, able to scoop up 80 million records. On the other hand, a sophisticated long lasting campaign, stealing more than $300 million on 100 banks in 30 nations.
It is very hard to choose which one deserves the (not so) coveted prize, in any case a consideration is worth: there could not have been a worst way to begin this 2015 Infosec year.
Moving on along the timeline, other interesting events appear, such as the compromising of the Forbes web site (again Flash is on the spot) by a Chinese APT Group dubbed Codoso, a “mobile tail” of the Operation Pawn Storm, now spreading to iOS devices, and eventually an unprecedented campaign targeting Syrian rebels using a combination of fake social media and Skype accounts associated with fictional female characters.
In background, as usual, multiple events driven by hacktivism, whose most remarkable one is undoubtedly the massive campaign carried on by the Anonymous collective, aimed to erase hundreds of pro-ISIS accounts and profiles from the Cyber Space (in particular from Facebook and Twitter).
If you want to have an idea of how fragile our electronic identity is inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012, 2013 and now 2014 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.
Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).
- https://blog.hipchat.com/2015/02/01/hipchat-security-notice-and-password-reset/
- http://webcache.googleusercontent.com/search?q=cache:Ob_i3m8d2fIJ:pastebin.com/ccvEBFzY+&cd=1&hl=en&ct=clnk&gl=uk
- http://krebsonsecurity.com/2015/02/banks-card-thieves-hit-white-lodging-again/
- http://www.gmanetwork.com/news/story/422037/scitech/technology/hackers-deface-gov-t-websites-to-demand-justice-for-slain-saf-officers
- http://www.gmanetwork.com/news/story/421932/scitech/technology/hackers-demand-respect-justice-for-fallen-44-from-pnoy-via-journo-s-website
- http://arstechnica.com/information-technology/2015/02/syrian-rebels-lured-into-malware-honeypot-sites-through-sexy-online-chats/
- http://krebsonsecurity.com/2015/02/target-hackers-hit-third-parking-service/
- http://www.hackread.com/arizona-army-national-guard-website-hacked-3xp1r3-cyber-army/
- http://www.hackread.com/stop-supporting-isis-anonymous-kurdistan-hacks-turkish-govt-sites/
- http://azeri.meximas.com/am/photostock.am.php
- http://arstechnica.com/security/2015/02/spyware-aimed-at-western-governments-journalists-hits-ios-devices/
- http://arstechnica.com/security/2015/02/string-of-big-data-breaches-continues-with-hack-on-health-insurer-anthem/
- http://webcache.googleusercontent.com/search?q=cache:qnKLMfxtrlYJ:pastebin.com/TbKj9jHu+&cd=1&hl=en&ct=clnk&gl=uk
- http://www.channelnewsasia.com/news/singapore/nanyang-polytechnic/1648374.html
- http://news.softpedia.com/news/Website-of-European-Parliament-President-Hacked-472575.shtml
- http://www.therepublic.com/view/story/f947e092b9bc4cbe92cfacbe6aa8de61/MO–Gateway-Arch-Data-Breach
- http://www.databreaches.net/hirsche-private-asset-emergency-announcement-regarding-breach-of-it-security-by-hacker-group/
- https://nakedsecurity.sophos.com/2015/02/09/chipotle-apologises-for-offensive-tweets-says-account-was-hacked/
- http://www.techworm.net/2015/02/radhika-apte-leaked-selfie-hacked.html
- http://www.zdnet.com/article/anonymous-targets-isis-social-media-recruitment-drives-in-opisis-campaign/
- http://news.softpedia.com/news/Brazilian-Boletos-Stolen-Through-DNS-Cache-Poisoning-472970.shtml
- http://www.invincea.com/2015/02/chinese-espionage-campaign-compromises-forbes/
- http://www.zdnet.com/article/ddos-attack-leaves-dutch-websites-offline-for-hours/
- https://nakedsecurity.sophos.com/2015/02/12/twitter-cfo-anthony-noto-has-account-hijacked/
- http://krebsonsecurity.com/2015/02/defense-contract-management-agency-probes-hack/#more-29823
- http://www.reuters.com/article/2015/02/10/us-cybersecurity-newsweek-idUSKBN0LE22Z20150210
- http://www.reuters.com/article/2015/02/10/us-delta-air-lines-cybercrime-idUSKBN0LE2UT20150210
- http://pastebin.com/YnR7GaWs
- http://www.databreaches.net/attempted-hack-of-jacksonville-aviation-authority-disclosed/
- http://news.softpedia.com/news/Chinese-Cybercriminals-Hit-South-Korean-Mobile-Users-Hard-473007.shtml
- http://www.dailystar.com.lb/News/Middle-East/2015/Feb-12/287210-observatory-hacked-by-syrian-electronic-army.ashx
- http://www.databreaches.net/au-5000-university-of-sydney-students-notified-that-hack-exposed-their-details/
- http://news.softpedia.com/news/DDoS-Launched-Against-Columbia-City-Website-473132.shtml
- http://pastebin.com/Es7q2AX9
- http://pastebin.com/SRLffY85
- http://www.nytimes.com/2015/02/15/world/bank-hackers-steal-millions-via-malware.html?_r=1
- http://www.hackread.com/standard-chartered-bank-hacked-money-stole-via-atms/
- http://pastebin.com/AjwULdWB
- http://pastebin.com/L3iepYp7
Related articles
- 16-31 January 2015 Cyber Attacks Timeline (hackmageddon.com)
- 1-15 January 2014 Cyber Attacks Timeline (hackmageddon.com)