In this first timeline of June, I have collected 69+1 events. This means that after the decreasing trend reported in the second timeline of May, we are back at the levels of April.
Ransomware is undoubtedly characterizing this part of the year, with attacks becoming more and more targeted and aggressive. The first timeline of June is no exception, and the list of the high-profile victims include: Eurofins Scientific, ASCO.
Also the list of the mega breaches continues to increase: dozens of million of records are compromised as a consequence of malicious activity on the payment pages of the American Medical Collection Agency (AMCA), whereas 1.1 million forum members are compromised in the wake of the Emuparadise breach.
Despite the number of attacks against crypto wallets is constantly decreasing, the impact of the single events remain pretty high. The latest victim is GateHub, from where crooks stole 3.2 million Ripple coins (XRP), worth nearly $10 million.
As far as Cyber Espionage is concerned, the most noticeable event is maybe the alleged attack against the European Union’s embassy in Moscow, occurred in February 2017 and discovered in April 2019.
Also the temporary hijacking (two hours) of the mobile internet traffic from multiple carriers in Europe towards China Telecom, occurred on June 6, is an event that deserves to be mentioned.
wdt_ID
ID
Date
Author
Target
Description
Attack
Target Class
Attack Class
Country
Link
Tags
1
1
28/05/2019
?
Iggy Azalea
Iggy Azalea has deactivated her social media accounts, after her topless photos were leaked online.
Account Hijacking
X Individual
CC
AU
Iggy Azalea
2
2
01/06/2019
?
Broome County
Broome County says an unauthorized individual may have had access to the personal information of county employees and individuals who receive the county’s care, after a phishing attack between November 2018 and January 2019.
Account Hijacking
O Public administration and defence, compulsory social security
CC
US
Broome County
3
3
02/06/2019
?
Eurofins Scientific
Eurofins Scientific is hit by a ransomware attack.
Malware
M Professional scientific and technical activities
CC
BE
Eurofins Scientific, ransomware
4
4
02/06/2019
?
Single Individuals
A new phishing campaign pretends to be a list undelivered email held on Outlook Web Mail. Users are then prompted to decide what they wish to do with each mail, with the respective links leading to a fake login form.
Account Hijacking
X Individual
CC
>1
Outlook Web
5
5
03/06/2019
?
American Medical Collection Agency (AMCA)
A malicious activity on the payment pages of the American Medical Collection Agency, leads to the compromise of millions of records, including 11.9 from Quest Diagnostic and 7.7 from LabCorp. The breach dated back to August 1, 2018 until March 30, 2019.
Malicious Script Injection
N Administrative and support service activities
CC
US
American Medical Collection Agency, Quest Diagnostic, Magecart, LabCorp
6
6
03/06/2019
Lab Dookhtegan
OilRig, also known as APT34 and HelixKitten
Jason, a tool for hijacking Microsoft Exchange email accounts allegedly used by the Iran-linked OilRig hacker group is leaked online.
Researchers from Trend Micro reveal the details of BlackSquid, a campaign targeting web servers, network drives, and removable drives, and using eight different exploits to drop the XMRig Miner.
Multiple Vulnerabilities
Y Multiple Industries
CC
>1
Trend Micro, BlackSquid, XMRig Miner, Crypto
8
8
03/06/2019
?
Windows 10 users
Windows 10 users in Germany are the targets of a malvertising campaigns carried out via the Microsoft Advertising network.
Malvertising
X Individual
CC
DE
Microsoft Advertising network
9
9
03/06/2019
ICEFOG APT
Multiple Targets
A researchers from FireEye, Chi-en (Ashley) Shen, discovers a new and upgraded versions of the presumed-to-be-dead ICEFOG (AKA Fucobha) malware targeting multiple organizations between 2015 and 2019.
Targeted Attack
Y Multiple Industries
CE
>1
FireEye, Chi-en (Ashley) Shen, ICEFOG, Fucobha
10
10
03/06/2019
Zebrocy
Multiple Targets
Researchers from Kaspersky Lab reveal a new wave of attacks from the Zebrocy Threat Actor.