1-15 June 2019 Cyber Attacks Timeline

In this first timeline of June, I have collected 69+1 events. This means that after the decreasing trend reported in the second timeline of May, we are back at the levels of April.

Ransomware is undoubtedly characterizing this part of the year, with attacks becoming more and more targeted and aggressive. The first timeline of June is no exception, and the list of the high-profile victims include: Eurofins Scientific, ASCO.

Also the list of the mega breaches continues to increase: dozens of million of records are compromised as a consequence of malicious activity on the payment pages of the American Medical Collection Agency (AMCA), whereas 1.1 million forum members are compromised in the wake of the Emuparadise breach.

Despite the number of attacks against crypto wallets is constantly decreasing, the impact of the single events remain pretty high. The latest victim is GateHub, from where crooks stole 3.2 million Ripple coins (XRP), worth nearly $10 million.

As far as Cyber Espionage is concerned, the most noticeable event is maybe the alleged attack against the European Union’s embassy in Moscow, occurred in February 2017 and discovered in April 2019.

Also the temporary hijacking (two hours) of the mobile internet traffic from multiple carriers in Europe towards China Telecom, occurred on June 6, is an event that deserves to be mentioned.

wdt_ID ID Date Author Target Description Attack Target Class Attack Class Country Link Tags
1 1 28/05/2019 ? Iggy Azalea Iggy Azalea has deactivated her social media accounts, after her topless photos were leaked online. Account Hijacking X Individual CC AU Iggy Azalea
2 2 01/06/2019 ? Broome County Broome County says an unauthorized individual may have had access to the personal information of county employees and individuals who receive the county’s care, after a phishing attack between November 2018 and January 2019. Account Hijacking O Public administration and defence, compulsory social security CC US Broome County
3 3 02/06/2019 ? Eurofins Scientific Eurofins Scientific is hit by a ransomware attack. Malware M Professional scientific and technical activities CC BE Eurofins Scientific, ransomware
4 4 02/06/2019 ? Single Individuals A new phishing campaign pretends to be a list undelivered email held on Outlook Web Mail. Users are then prompted to decide what they wish to do with each mail, with the respective links leading to a fake login form. Account Hijacking X Individual CC >1 Outlook Web
5 5 03/06/2019 ? American Medical Collection Agency (AMCA) A malicious activity on the payment pages of the American Medical Collection Agency, leads to the compromise of millions of records, including 11.9 from Quest Diagnostic and 7.7 from LabCorp. The breach dated back to August 1, 2018 until March 30, 2019. Malicious Script Injection N Administrative and support service activities CC US American Medical Collection Agency, Quest Diagnostic, Magecart, LabCorp
6 6 03/06/2019 Lab Dookhtegan OilRig, also known as APT34 and HelixKitten Jason, a tool for hijacking Microsoft Exchange email accounts allegedly used by the Iran-linked OilRig hacker group is leaked online. Unknown S Other service activities CC IR OilRig, APT34, HelixKitten, Jason, Lab Dookhtegan. Telegram
7 7 03/06/2019 ? Web servers, network drives, and removable drives Researchers from Trend Micro reveal the details of BlackSquid, a campaign targeting web servers, network drives, and removable drives, and using eight different exploits to drop the XMRig Miner. Multiple Vulnerabilities Y Multiple Industries CC >1 Trend Micro, BlackSquid, XMRig Miner, Crypto
8 8 03/06/2019 ? Windows 10 users Windows 10 users in Germany are the targets of a malvertising campaigns carried out via the Microsoft Advertising network. Malvertising X Individual CC DE Microsoft Advertising network
9 9 03/06/2019 ICEFOG APT Multiple Targets A researchers from FireEye, Chi-en (Ashley) Shen, discovers a new and upgraded versions of the presumed-to-be-dead ICEFOG (AKA Fucobha) malware targeting multiple organizations between 2015 and 2019. Targeted Attack Y Multiple Industries CE >1 FireEye, Chi-en (Ashley) Shen, ICEFOG, Fucobha
10 10 03/06/2019 Zebrocy Multiple Targets Researchers from Kaspersky Lab reveal a new wave of attacks from the Zebrocy Threat Actor. Targeted Attack Y Multiple Industries CE >1 Kaspersky Lab, Zebrocy
ID Date Author Target Description Attack Target Class Attack Class Country Link Tags

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: