So it’s time to publish the second timeline of March, covering the main cyber attacks occurred between the 16th and the 31st of the same month (the first part is available here).
The good news is that the increasing trend seems to have hit a break, as this fortnight the number of events is the lower recorded so far in 2018. The bad news is that there has been yet another massive breach, I am obviously referring to Under Armour, which had the data of 150 million users of the food and nutrition app and website, MyFitnessPal, compromised.
Unfortunately this wasn’t the only massive event of this fortnight: also the UK National Lottery was under attack, with the consequence that 15 million users were warned to change their passwords, similarly to Orbitz, a subsidiary of the online travel agency Expedia, which revealed that hackers might have accessed personal information from about 880,000 payment cards.
APT28 (AKA Fancy Bear) continues its momentum even if apparently their attack against the UK Anti-Doping Agency has been foiled. Another actor than pops up now and then is the alleged Iranian-linked OilRig APT: as a matter of fact a report has revealed a new wave of attacks against a number of organizations across the Middle East. Last but not least, the Italian football team S.S. Lazio deserves a special mention, as the first football team to fall victim of an email scam, paying to fraudsters, €2m of the final instalment for a player.
As usual, if you want to have an idea of how fragile our electronic identity is inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012, 2013, 2014, 2015, 2016, 2017 and now 2018 (regularly updated… Hopefully!). You may also want to have a look at the Cyber Attack Statistics that are regularly published, and follow @paulsparrows on Twitter for the latest updates.