Last Updated on August 30, 2017
Eventually I have been able to catch up and now I am proud to publish the first timeline of August covering the main cyber attacks occurred between 1-15 August.
At least for once, the timeline does not report any mega-breach (that’s something!) however a new trend is emerging and is the ability, for the criminals to compromise browser add-ons (there have been multiple cases reported in this period).
Another interesting emerging trend is the compromise of software updates of legitimate applications: this time it has been the turn of NetSarang and npm (the node.js management package)
Threat actors do not take vacations though: APT28, for instance, is always on the spot (this time the group has been using the infamous Eternal Blue vulnerability to target people of interest as they connect to hotel guest wi-fi networks). Other interesting events include: a brute force attacks against the Scottish Parliament, a campaign against Russian-speaking enterprises, the discovery that North Korean organizations are still targeted by an unknown organization using the Konni malware, and a new wave of attacks by the Lazarus Group against individuals involved with US Defense contractors.
Last but not least, some crooks found the time to hijack Ariana Grande Instagram account.
As usual scroll down the whole list for all the events happened in this fortnight. And if you want to have an idea of how fragile our electronic identity is inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012, 2013, 2014, 2015 and 2016 (regularly updated). You may also want to have a look at the Cyber Attack Statistics that are regularly published, and follow @paulsparrows on Twitter for the latest updates.