Last Updated on August 7, 2019

I haven’t updated the blog for a while, and now it’s finally time to catch up. Let’s start with the second timeline of June (first one here) covering the main cyber attacks occurred between June 16 and June 30 (plus a couple of exceptions).

Without any doubts, ransomware is back and the list of its victims (and the ones that decide to pay) grows every fortnight: Riviera Beach and Key Biscaine are the latest examples.

Even the Cyber Espionage front is particularly hot (and not only for the Summer): APT10 continues to be on a roll: the real extent of Operation Soft Cell (a massive campaign against at least ten telco providers) and Operation Cloud Hopper has been revealed and it’s really huge. But also entire governments are involved since it turned out that apparently some Western Intelligence Agencies attacked Yandex with a Regin variant. Additionally Iran claimed to have exposed a cyber espionage network allegedly run by the CIA.

Iran that was also allegedly hit by a cyber-attack against its weapons that apparently disables the computer systems controlling rocket and missile launchers.

The amount of events is constantly high in the latest months, so it’s really impossible to summarize everything in a few lines. Grab a cup of coffee (or whatever you want) and browse the timeline. Also feel free to share it and spread the verb of security awareness throughout the community.

Most importantly, do not forget to follow @paulsparrows on Twitter for the latest updates.

wdt_IDIDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags
1114/06/2019?Olean Medical GroupOlean Medical Group is hit by a ransomware attack.MalwareQ Human health and social work activitiesCCUSOlean Medical Group, ransomware
2214/06/2019?Seneca Nation Health SystemSeneca Nation Health System is hit by a ransomware attack.MalwareQ Human health and social work activitiesCCUSSeneca Nation Health System
3317/06/2019USAIranIran says it had exposed a large cyber espionage network allegedly run by the U.S. Central Intelligence Agency (CIA).UnknownO Public administration and defence, compulsory social securityCEIRUSA, Iran, CIA
4417/06/2019?A. Duie PylePennsylvania trucking firm A. Duie Pyle reports to have been hit with a ransomware attack.MalwareH Transportation and storageCCUSA. Duie Pyle, ransomware
5517/06/2019?Australian Catholic University (ACU)Australian Catholic University (ACU) reveals that a data breach occurred on its systems as a result of a phishing attack discovered on May 22.Account HijackingP EducationCCAUAustralian Catholic University, ACU
6618/06/2019?NASA's Jet Propulsion Laboratory (JPL)A report from NASA reveals an April 2018 security breach, wherein a Raspberry Pi that was not authorized to be linked to the JPL network was targeted by hackers.Unauthorized Raspberry PiO Public administration and defence, compulsory social securityCCUSNASA, Raspberry Pi, Jet Propulsion Laboratory, JPL
7718/06/2019?Some Middle Eastern CountriesResearchers from Trend Micro discover 'Bouncing Golf', a cyberespionage campaign targeting Android users in Middle Eastern countries.Targeted AttackY Multiple IndustriesCE>1Trend Micro, Bouncing Golf
8818/06/2019?Turkish Cryptocurrency UsersResearcher Lukas Stefanko discover some malicious apps that can steal one-time passwords (OTP) from the notification system in disguise of two fake BtcTurk apps.MalwareX IndividualCCTRLukas Stefanko, Android, OTP, BtcTurk
9918/06/2019?EatStreetOnline food ordering service EatStreet discloses a security incident between May 3 and May 17, which led to a data breach involving customer payment card information and sensitive info of delivery and restaurant partners.UnknownI Accommodation and food service activitiesCCUSEatStreet
101018/06/2019?Multiple TargetsResearchers from Kaspersky discover Plurox, a new modular backdoor malware capable of mining cryptocurrencies and spreading to other machines on the local network with the help of SMB and UPnP plugins.MalwareY Multiple IndustriesCC>1Kaspersky, Plurox, SMB, UPnP
IDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.