Last Updated on January 23, 2016

It’s finally time to publish the timeline of the main cyber attacks occurred in the second half of May.

A two-weeks period that will be remembered for an unprecedented trail of massive breaches, started with Pacnet (number of victims unknown), and continued throughout the month with CareFirst BlueCross BlueShield (1.1 million victims), Adultfriendfinder (4 million), the Saudi Ministry of Foreign Affairs (1 million), the Internal Revenue Systems (100,000), the music streaming portal (7.5 million) and, last but not least, the Japan’s universal public pension system (1.25 million), with a resulting damage report exceeding 10 million of compromised individuals.

These attacks have obviously overshadowed all the other “minor” events, with the partial exception of the DNS Hijacking attack against the Federal Reserve Bank of St. Louis (discovered on May 18, but happened on April 24).

As usual, keep the level of attention high, and if you want to have an idea of how fragile our electronic identity is inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012, 2013, 2014 and now 2015 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

1May 16Pr0digyjonimitchell.comA hacker dubbed Pr0digy hacks and dumps 9,000 usernames and clear text passwords.UnknownSingle IndividualCCUS
2May 17@CyberBlocChile’s National Municipal Information System ( AKA @CyberBloc hacks the official website of Chile’s National Municipal Information System (, defacing it and leaking login details of officials. The attack is done in support of student protests against the government’s education policy.Defacement SQLiGovernmentHCI
3May 17?Unnamed Car ParkVehicles across an entire car park in Manchester have their locks jammed on as the apparent result of a hack.JammingCar ParkingCCUK
4May 18?Single IndividualsThe Federal Reserve Bank of St. Louis notifies the individuals using its services that on April 24, 2015, unknown hackers manipulated the DNS to redirect some of the Bank’s web traffic to rogue webpages.DNS HijackingGovernmentCCUS
5May 18AnonGhostWayne Country Sheriff’s Department
In name of OpUSA, the online hacktivists AnonGhost deface the official website of Wayne Country Sheriff’s department ( and leak its database containing login credentials of its employees.DefacementLaw EnforcementHUS
6May 18?MetroHealthMetroHealth notifies nearly 1,000 patients that three computers in its Cardiac Cath Lab were infected with malware, and the affected computers contained their personal information.MalwareHealthcareCCUS
7May 18Middle East Cyber ArmyEnglish Language Academy of the Univerity of Auckland ( hacker group calling itself the Middle East Cyber Army defaces the website of the English Language Academy of the Univerity of Auckland (
8May 19AnonymousItalian Ministry of Defense ( the Expo, the Italian Anonymous target the Italian Ministry of Defense (difesa,it), and leak a list of 1,700 accounts.SQLiGovernmentHIT
9May 20?Pacnet (now part of Telstra Corporation Limited )Telstra notifies its customer of a data breach involving its Asian subsidiary Pacnet. Telstra is made aware of the breach on April 16, only after acquiring Pacnet.SQLiIndustry: TelcoCCHK SG
10May 20H1d3n RootPhiladelphia's City Council ( website for Philadelphia's City Council ( is hacked by a pro-Muslim hacker calling himself H1d3n Root.DefacementGovernmentHUS
11May 21?CareFirst BlueCross BlueShieldCareFirst BlueCross BlueShield announces that data belonging to 1.1 million customers in the Washington D.C. area was stolen in a cyber attack on June 2014. Attackers accessed a database containing names, birth dates, email addresses and subscriber ID numbers.Targeted AttackHealthcareCCUS
12May 21?adultfriendfier.comPersonal information relating to almost 4 million users of a worldwide online dating website is leaked on the Dark Web by unknown hackers. Details of users’ sexual preferences, along with email addresses, usernames, dates of birth, postcodes and the unique internet addresses of users’ computers are compromised.UnknownAdult SiteCCUS
13May 21?University of London Computer CentreThe University of London Computer Centre falls victim of a DDoS attack that leaves Moodle, an open-source learning platform, out of action for several hours.DDoSEducationCCUK
14May 21?eNomeNom, a domain registrar, informs its customers to have been hit by a group of attackers, who altered the domain name system (DNS) settings of four domains, redirecting traffic to different web resources than those intended by the owners.DNS HijackingIndustry: internet ServicesCC14
14May 21?SafeandVaultStoreSafeandVaultStore, an online vendor of physical safes and vaults, notifies its customers to have been hit by cybercriminals who planted malicious code on its eCommerce website and captured details of orders placed by customers.MalwareIndustry: E-CommerceCCUS
16May 22?BitfinexBitfinex, a Bitcoin wallet, announces to have been hacked, and ask all customers to cease depositing cryptocurrency to old deposits addresses. The impact of the breach is relatively small (0.5%)UnknownBitcoin ExchangeCCUS
17May 22?Beacon Health SystemBeacon Health System notifies an undisclosed number of patients that their personal information may have been compromised by unauthorized individuals who gained access to employee email accounts.Account HijackingHealthcareCCUS
18May 22Yemen Cyber ArmySaudi Ministry of Foreign Affairs ( Yemen Cyber Army defaces the Saudi Ministry of Foreign Affairs ( and leaks plain-text login credentials of Saudi officials, conversations between embassies along with Embassies VSAT Communications. They also release, few days after, some records of Saudi VISA Database, threatening to release 1M more.UnknownGovernmentHSA
19May 22Moroccan Revolution TeamWestchester Health ( group of Pro-ISIS hackers called Moroccan Revolution Team defaces the website of Westchester Health (
20May hacks and dumps 13,000 usernames and hashed passwords.SQLiOnline ServicesCCCA
21May 23AnonCodersRepublican Party of Kentucky ( international group of hackers operating under the name AnonCoders defaces the main website of the Republican Party of Kentucky ( to raise awareness that Muslims are not terrorists.DefacementOrg: Political PartyHUS
22May 23? anonymous hacker hacks and dumps 7,800 usernames and passwords.SQLiOnline ServicesCCNA
23May 24?Breetec International nvThe metal company Breetec in Belgium suffers a 80,000 EUR worth loss (87,000 USD) after being hit by a malware targeting the Isabel payment system and spread via email. Other two Belgian companies have been allegedly hit by the same malware.MalwareIndustry: MetalCCBE
24May, a member of TeaMp0isoN, hacks (a Minecraft Pocket Edition Forum whose domain was recently expired) and dumps the forum’s database containing 16,125 records with, usernames, passwords, and numerous other fields relating to forum participation.SQLiOnline ForumCCUS
25May 24AnonymousThailand Senate and Public Health MinistryThe Anonymous breach into the official website of Thailand Senate and Public Health Ministry, and leak login credentials against country’s alleged support for human trafficking.UnknownGovernmentHTH
26May 24Moroccan Islamic Union-MailEmbassy of Nepal in Washington ( official website of embassy of Nepal in Washington ( is hacked by Moroccan Islamic Union-Mail, a group of Moroccan hackers who leave a message against the American invasion of Iraq and what happened afterwards.DefacementGovernmentHNP
27May 24Dr.SHA6HUzbekistan Embassy in Kuwait ( , the anti-Bashar Al Assad hacker from Syria, hacks into the official website of Uzbekistan Embassy in Kuwait ( and demands governments around the world to bring peace in Syria.DefacementGovernmentHUZ
28May 25?Hex-RaysHex-Rays, developers of IDA (Interactive Disassembler) sends an email notification to its customers about a recent attack that may have resulted in the compromise of some license keys along with the web forum and the quotation system.UnknownIndustry: SoftwareCCBE
29May 25Galvanize MobChris Jericho's Twitter accountChris Jericho's Twitter account is hacked by a group called the Galvanize Mob. The attackers post some offensive messages.Account HijackingSingle IndividualCCUS
30May 26?Internal Revenue System
Unknown hackers illegitimately access the Get Transcript service of the IRS (Internal Revenue System) and obtain the information on more than 100,000 US taxpayers from February to mid-May.UnknownGovernmentCCUS
31May 26? anonymous hacker hacks and dumps 7,800 usernames and passwords.SQLiOrg: EducationCCUK
32May 28Mak Mangaana.comGaana, one of the top music streaming sites in India with more than 7.5 million monthly users is hacked by a Pakistani hacker called Mak Man, and its user database is exposed.SQLiMusing StreamingCCIN
33May 28?Japan’s universal public pension system The organization that manages Japan’s universal public pension system confirms that approximately 1.25 million personal records are compromised by hackers in a recent targeted attack.Targeted AttackGovernmentCCJP
34May 28? automobile auction website, notifies its users that its computer systems were breached by an unknown attacker, who gained access to sensitive information belonging to its members.UnknownIndustry: AutomotiveCCUS
35May 30OceanLotusChina's marine agencies, scientific research institutions and shipping companiesA report released by Chinese internet company Qihoo 360's SkyEye Labs accuses a state-sponsored foreign organization named OceanLotus, of stealing government information. According to the report, OceanLotus has launched "elaborately organized" online attacks on China's marine agencies, scientific research institutions and shipping companies since April 2012.Targeted Attack>1CECN
36May 30?Single IndividualHackers set their sights on a local businessman In Mahwah (NYC) and obtain enough of his personal information to persuade his bank to wire $240,000 overseas.Social EngineeringSingle IndividualCCUS
37May 30yPeRtRoNthaimassagemodel.comyPeRtRoN hacks an adult web site ( and dumps 4,614 records with usernames and hashed passwords.SQLiAdult SiteCCTH
H Hacktivism

CC Cyber Crime
CE Cyber Espionage
CW Cyber War

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.