In this first timeline of June, I have collected 69+1 events. This means that after the decreasing trend reported in the second timeline of May, we are back at the levels of April.
Ransomware is undoubtedly characterizing this part of the year, with attacks becoming more and more targeted and aggressive. The first timeline of June is no exception, and the list of the high-profile victims include: Eurofins Scientific, ASCO.
Also the list of the mega breaches continues to increase: dozens of million of records are compromised as a consequence of malicious activity on the payment pages of the American Medical Collection Agency (AMCA), whereas 1.1 million forum members are compromised in the wake of the Emuparadise breach.
Despite the number of attacks against crypto wallets is constantly decreasing, the impact of the single events remain pretty high. The latest victim is GateHub, from where crooks stole 3.2 million Ripple coins (XRP), worth nearly $10 million.
As far as Cyber Espionage is concerned, the most noticeable event is maybe the alleged attack against the European Union’s embassy in Moscow, occurred in February 2017 and discovered in April 2019.
Also the temporary hijacking (two hours) of the mobile internet traffic from multiple carriers in Europe towards China Telecom, occurred on June 6, is an event that deserves to be mentioned.
Iggy Azalea has deactivated her social media accounts, after her topless photos were leaked online.
Broome County says an unauthorized individual may have had access to the personal information of county employees and individuals who receive the county’s care, after a phishing attack between November 2018 and January 2019.
O Public administration and defence, compulsory social security
Eurofins Scientific is hit by a ransomware attack.
M Professional scientific and technical activities
Eurofins Scientific, ransomware
A new phishing campaign pretends to be a list undelivered email held on Outlook Web Mail. Users are then prompted to decide what they wish to do with each mail, with the respective links leading to a fake login form.
American Medical Collection Agency (AMCA)
A malicious activity on the payment pages of the American Medical Collection Agency, leads to the compromise of millions of records, including 11.9 from Quest Diagnostic and 7.7 from LabCorp. The breach dated back to August 1, 2018 until March 30, 2019.
Malicious Script Injection
N Administrative and support service activities
American Medical Collection Agency, Quest Diagnostic, Magecart, LabCorp
OilRig, also known as APT34 and HelixKitten
Jason, a tool for hijacking Microsoft Exchange email accounts allegedly used by the Iran-linked OilRig hacker group is leaked online.