Last Updated on January 1, 2019

It’s time to publish the first timeline of December, covering the main cyber attacks occurred in the first half of the same month. In this fortnight have collected a total of 57 events (plus two that occurred in November that I included in this timeline), the same number of the second timeline of November, which confirms a sustained level of activity.

The Christmas atmosphere did not stop megabreaches from happening: so Quora had the information of 100 million users compromised. Regardless of the Christmas atmosphere, I also wonder if the authors of the Business Email Compromise against Save the Children (costing $1 million) had a guilty conscience for the shameful action they did. But we know that the crime has no honor, so the chronicle also reports a Hollywood-style operation, thanks to DarkVishnya: a Cyber-criminal gang believed to have stolen tens of millions of dollars from at least eight banks in Eastern Europe, leaving malicious devices connected to their victims’ networks

Moving to cyber espionage, the most important event is probably the compromise of emails of top NRCC officials. Despite it occurred back in April, it was revealed just now. Even the Czech Republic was the target of a couple of state-sponsored activities carried out by Turla and APT 28, occurred in the past months, but revealed now.

But the timeline is unfortunately quite reach, and hence impossible to summarize, so I suggest you to browse it all to have an idea of the threat landscape, and also share it, to raise the awareness across the community. The timelines of the main Cyber Attacks in 2011, 2012, 2013, 2014, 2015, 2016, 2017 and now 2018 are also available, and do not forget the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

wdt_IDIDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags
1102/11/2018?ASI Computer SystemsASI Computer Systems notifies some of their customers after discovering that usernames and passwords on a support web site had been hacked prior to December 2016.Account HijackingJ Information and communicationCCUSASI Computer Systems
2229/11/2018?Mind & MotionMind & Motion notifies 16,000 after a ransomware attack.MalwareQ Human health and social work activitiesCCUSMind & Motion
3301/12/2018?Targets in ChinaOver 100,000 computers in China are infected in just a few days by 'WeChat Ransom' since the ransom is payable via Tencent's WeChat payment service.MalwareX IndividualCCCNWeChat Ransom, Tencent, WeChat
4401/12/2018?Palermo CalcioThe Italian Football Team Palermo Calcio reveals to have suffered an intrusion with the consequent leak of fake news about the imminent sale of the team.UnknownS Other service activitiesCCITPalermo Calcio
5503/12/2018Turla and APT28 (Sofacy or Fancy Bear)Czech Ministry of Foreign Affairs (MFA), Ministry of Defense, and the Army of the Czech RepublicThe Czech Security Intelligence Service (BIS) that two Russian-linked cyber-espionage groups have hacked into the Czech Republic's government networks during 2016 and 2017.Targeted AttackO Public administration and defence, compulsory social securityCECZTurla, APT28, Sofacy, Fancy Bear, Czech Ministry of Foreign Affairs, MFA, Ministry of Defense, Army of the Czech Republic
6603/12/2018?QuoraQuora announces that one of their systems was hacked on November 30, and has led to the exposure of approximately 100 million user's data to an unauthorized third-party.UnknownJ Information and communicationCCUSQuora
7703/12/2018MagecartOppoSuitsCustomers of Dutch clothing company OppoSuits are warned to monitor their credit card accounts after the firm discovers the Magecart malware planted on its website could have stolen the details of 7,000 customers.Malicious Script InjectionG Wholesale and retail tradeCCNLOppoSuits, Magecart
8803/12/2018?iOS UsersApple removes two malicious iOS apps (Fitness Balance and Calories Tracker) that tricked users into approving TouchID payments via misleading popups.MalwareX IndividualCC>1Apple, iOS. Fitness Balance, Calories Tracker, TouchID
9903/12/2018?Cancer Treatment Centers of AmericaCancer Treatment Centers of America notifies almost 42,000 patients of possible access to their protected health information after a phishing attack occurred on May 2 and discovered on September 26.Account HijackingQ Human health and social work activitiesCCUSCancer Treatment Centers of America
101004/12/2018?NRCC (National Republican Congressional Committee)Politico reveals that the emails of top NRCC officials were hacked in a major 2018 hack occurred in April.Account HijackingO Public administration and defence, compulsory social securityCEUSPolitico, NRCC, National Republican Congressional Committee
IDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.