16-30 June 2019 Cyber Attacks Timeline

I haven’t updated the blog for a while, and now it’s finally time to catch up. Let’s start with the second timeline of June (first one here) covering the main cyber attacks occurred between June 16 and June 30 (plus a couple of exceptions).

Without any doubts, ransomware is back and the list of its victims (and the ones that decide to pay) grows every fortnight: Riviera Beach and Key Biscaine are the latest examples.

Even the Cyber Espionage front is particularly hot (and not only for the Summer): APT10 continues to be on a roll: the real extent of Operation Soft Cell (a massive campaign against at least ten telco providers) and Operation Cloud Hopper has been revealed and it’s really huge. But also entire governments are involved since it turned out that apparently some Western Intelligence Agencies attacked Yandex with a Regin variant. Additionally Iran claimed to have exposed a cyber espionage network allegedly run by the CIA.

Iran that was also allegedly hit by a cyber-attack against its weapons that apparently disables the computer systems controlling rocket and missile launchers.

The amount of events is constantly high in the latest months, so it’s really impossible to summarize everything in a few lines. Grab a cup of coffee (or whatever you want) and browse the timeline. Also feel free to share it and spread the verb of security awareness throughout the community.

Most importantly, do not forget to follow @paulsparrows on Twitter for the latest updates.

wdt_ID ID Date Author Target Description Attack Target Class Attack Class Country Link Tags
1 1 14/06/2019 ? Olean Medical Group Olean Medical Group is hit by a ransomware attack. Malware Q Human health and social work activities CC US Olean Medical Group, ransomware
2 2 14/06/2019 ? Seneca Nation Health System Seneca Nation Health System is hit by a ransomware attack. Malware Q Human health and social work activities CC US Seneca Nation Health System
3 3 17/06/2019 USA Iran Iran says it had exposed a large cyber espionage network allegedly run by the U.S. Central Intelligence Agency (CIA). Unknown O Public administration and defence, compulsory social security CE IR USA, Iran, CIA
4 4 17/06/2019 ? A. Duie Pyle Pennsylvania trucking firm A. Duie Pyle reports to have been hit with a ransomware attack. Malware H Transportation and storage CC US A. Duie Pyle, ransomware
5 5 17/06/2019 ? Australian Catholic University (ACU) Australian Catholic University (ACU) reveals that a data breach occurred on its systems as a result of a phishing attack discovered on May 22. Account Hijacking P Education CC AU Australian Catholic University, ACU
6 6 18/06/2019 ? NASA's Jet Propulsion Laboratory (JPL) A report from NASA reveals an April 2018 security breach, wherein a Raspberry Pi that was not authorized to be linked to the JPL network was targeted by hackers. Unauthorized Raspberry Pi O Public administration and defence, compulsory social security CC US NASA, Raspberry Pi, Jet Propulsion Laboratory, JPL
7 7 18/06/2019 ? Some Middle Eastern Countries Researchers from Trend Micro discover 'Bouncing Golf', a cyberespionage campaign targeting Android users in Middle Eastern countries. Targeted Attack Y Multiple Industries CE >1 Trend Micro, Bouncing Golf
8 8 18/06/2019 ? Turkish Cryptocurrency Users Researcher Lukas Stefanko discover some malicious apps that can steal one-time passwords (OTP) from the notification system in disguise of two fake BtcTurk apps. Malware X Individual CC TR Lukas Stefanko, Android, OTP, BtcTurk
9 9 18/06/2019 ? EatStreet Online food ordering service EatStreet discloses a security incident between May 3 and May 17, which led to a data breach involving customer payment card information and sensitive info of delivery and restaurant partners. Unknown I Accommodation and food service activities CC US EatStreet
10 10 18/06/2019 ? Multiple Targets Researchers from Kaspersky discover Plurox, a new modular backdoor malware capable of mining cryptocurrencies and spreading to other machines on the local network with the help of SMB and UPnP plugins. Malware Y Multiple Industries CC >1 Kaspersky, Plurox, SMB, UPnP
ID Date Author Target Description Attack Target Class Attack Class Country Link Tags

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: