The first cyber attack timeline of October is ready: this fortnight I have collected 54 events, with a level of activity in line with September when I reported respectively 56 and 55 events in the first, and second half of the previous month.
The main event is probably the report of an alleged massive cyber espionage campaign against 30 U.S. companies, including Amazon and Apple, carried out by Chinese actors implanting a chip inside the Super Micro servers used by the targets. Inevitably the report is controversial and there are many doubts on its effective truthfulness, however it’s the example of a supply chain attack, something that is becoming increasingly common.
As always, there is always at least a massive breach in each timeline: this fortnight the list includes the one occurred to Apollo (200 million contact records possibly compromised), and a database of 35 million US voters records, appeared on sale on a forum.
And while another bank (the Indian branch of the State Bank of Mauritius) fell victim of an attack carried out via SWIFT ($14 million worth stolen, of which $10 have allegedly been recovered), the timeline confirms the growing trend of cyber espionage, which saw multiple operations led by old acquaintances like APT10, APT28, Black Energy, and newer actors like Nomadic Octopus, Gallmaker, and FruityArmor.
At the end of the day, 54 events are too many to summarize in few lines, so feel free to read carefully the whole timeline to have a complete view of the threat landscape (and also share it!). The timelines of the main Cyber Attacks in 2011, 2012, 2013, 2014, 2015, 2016, 2017 and now 2018 are also available, and do not forget the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.
Finally, you may always ask for the raw data, but please do not forget to include a short presentation and the purpose of the project. I will not accept requests without any details.
|wdt_ID||ID||Date||Author||Target||Description||Attack||Target Class||Attack Class||Country||Link||Tags|
|ID||Date||Author||Target||Description||Attack||Target Class||Attack Class||Country||Link||Tags|