Last Updated on July 10, 2019

In this first timeline of June, I have collected 69+1 events. This means that after the decreasing trend reported in the second timeline of May, we are back at the levels of April.

Ransomware is undoubtedly characterizing this part of the year, with attacks becoming more and more targeted and aggressive. The first timeline of June is no exception, and the list of the high-profile victims include: Eurofins Scientific, ASCO.

Also the list of the mega breaches continues to increase: dozens of million of records are compromised as a consequence of malicious activity on the payment pages of the American Medical Collection Agency (AMCA), whereas 1.1 million forum members are compromised in the wake of the Emuparadise breach.

Despite the number of attacks against crypto wallets is constantly decreasing, the impact of the single events remain pretty high. The latest victim is GateHub, from where crooks stole 3.2 million Ripple coins (XRP), worth nearly $10 million.

As far as Cyber Espionage is concerned, the most noticeable event is maybe the alleged attack against the European Union’s embassy in Moscow, occurred in February 2017 and discovered in April 2019.

Also the temporary hijacking (two hours) of the mobile internet traffic from multiple carriers in Europe towards China Telecom, occurred on June 6, is an event that deserves to be mentioned.

wdt_IDIDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags
1128/05/2019?Iggy AzaleaIggy Azalea has deactivated her social media accounts, after her topless photos were leaked online.Account HijackingX IndividualCCAUIggy Azalea
2201/06/2019?Broome CountyBroome County says an unauthorized individual may have had access to the personal information of county employees and individuals who receive the county’s care, after a phishing attack between November 2018 and January 2019.Account HijackingO Public administration and defence, compulsory social securityCCUSBroome County
3302/06/2019?Eurofins ScientificEurofins Scientific is hit by a ransomware attack.MalwareM Professional scientific and technical activitiesCCBEEurofins Scientific, ransomware
4402/06/2019?Single IndividualsA new phishing campaign pretends to be a list undelivered email held on Outlook Web Mail. Users are then prompted to decide what they wish to do with each mail, with the respective links leading to a fake login form.Account HijackingX IndividualCC>1Outlook Web
5503/06/2019?American Medical Collection Agency (AMCA)A malicious activity on the payment pages of the American Medical Collection Agency, leads to the compromise of millions of records, including 11.9 from Quest Diagnostic and 7.7 from LabCorp. The breach dated back to August 1, 2018 until March 30, 2019.Malicious Script InjectionN Administrative and support service activitiesCCUSAmerican Medical Collection Agency, Quest Diagnostic, Magecart, LabCorp
6603/06/2019Lab DookhteganOilRig, also known as APT34 and HelixKittenJason, a tool for hijacking Microsoft Exchange email accounts allegedly used by the Iran-linked OilRig hacker group is leaked online.UnknownS Other service activitiesCCIROilRig, APT34, HelixKitten, Jason, Lab Dookhtegan. Telegram
7703/06/2019?Web servers, network drives, and removable drivesResearchers from Trend Micro reveal the details of BlackSquid, a campaign targeting web servers, network drives, and removable drives, and using eight different exploits to drop the XMRig Miner.Multiple VulnerabilitiesY Multiple IndustriesCC>1Trend Micro, BlackSquid, XMRig Miner, Crypto
8803/06/2019?Windows 10 usersWindows 10 users in Germany are the targets of a malvertising campaigns carried out via the Microsoft Advertising network.MalvertisingX IndividualCCDEMicrosoft Advertising network
9903/06/2019ICEFOG APTMultiple TargetsA researchers from FireEye, Chi-en (Ashley) Shen, discovers a new and upgraded versions of the presumed-to-be-dead ICEFOG (AKA Fucobha) malware targeting multiple organizations between 2015 and 2019.Targeted AttackY Multiple IndustriesCE>1FireEye, Chi-en (Ashley) Shen, ICEFOG, Fucobha
101003/06/2019ZebrocyMultiple TargetsResearchers from Kaspersky Lab reveal a new wave of attacks from the Zebrocy Threat Actor.Targeted AttackY Multiple IndustriesCE>1Kaspersky Lab, Zebrocy
IDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.