Last Updated on October 3, 2019

Time to publish the second timeline of August, covering the main cyber attacks occurred between the 16th and the 31st. In this period, I have collected a total of 82 events (including 3 “intruders” that occurred in the first half of the month but were not included in the previous one), a number that is essentially in line with the previous timeline.

Probably the most important event of this fortnight is the discovery, made by researchers of Google’s Project Zero, of a chain of malicious websites serving exploits for 14 iOS vulnerabilities, deployed in the wild since September 2016, and purportedly targeting the Uyghur community in the Chinese Xinjiang state (well we are used to Android malware, aren’t we? And this fortnight is no exception).

The time of the mega breaches never ends, and the unwelcome prize of this timeline goes to Hostinger, where an attacker obtained an API Key and siphoned the information of up to potentially 14 million users.

Ransomware confirms to be the plague of this 2019 and the number of targeted organizations (especially in the educational and healthcare sector) continues to increase.

Last but not least, state-sponsored actors are always active, I have recorded 12 events related to cyber espionage, whose majority has been carried out by the usual suspects (China, North Korea, and Iran).

As usual the list is too long to summarize in few lines, and I don’t want to take too much of your time that you could better spend in browsing the timeline, so you have no choice but browse it all, and also share it to spread the concept of risk awareness across the community. Of course feel free to contribute, suggesting noticeable cyber events, and do not forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

wdt_IDIDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags
1109/08/2019?Mid-Valley Behavioral Care Networks (BCN)Nearly 11,000 Mid-Valley Behavioral Care Networks (BCN) are notified of a potential breach of their data, after a phishing attack on two employee email accounts.Account HijackingQ Human health and social work activitiesCCUSMid-Valley Behavioral Care Networks, BCN
2212/08/2019?Government of ArgentinaHackers leak 700 GB of data obtained from the government of Argentina, including confidential documents, wiretaps and biometric information from the Argentine Federal Police, along with the personal data of police officers.UnknownO Public administration and defence, compulsory social securityHARArgentina
3315/08/2019?Spotsylvania CountyVirginia State Police announces to have recovered part of the money ($600,000) stolen from Spotsylvania County in a phishing attack earlier in July.Account HijackingO Public administration and defence, compulsory social securityCCUSSpotsylvania County
4416/08/2019?23 Texas Government AgenciesA coordinated ransomware attack takes down 23 Government Agencies across Texas.MalwareO Public administration and defence, compulsory social securityCCUSTexas, Ransomware
5516/08/2019?Multiple WebsitesA team of academics from all over the world find malicious scripts that intercept user clicks on 613 of today's most popular websites.Malicious Script InjectionY Multiple IndustriesCC>1Clickjacking
6616/08/2019?Android UsersGoogle removes 85 Android apps from the Google Play Store after researchers from Trend Micro find they were nothing more than adware posing as legitimate software.MalwareX IndividualCC>1Google Trend Micro, Android
7716/08/2019?Office 365 usersMicrosoft security researchers discover an unusual phishing campaign which employs custom 404 error pages to trick potential victims into handing out their Microsoft credentials.Account HijackingY Multiple IndustriesCC>1Microsoft, Office 365
8816/08/2019?Michigan MedicineMichigan Medicine notifies approximately 5,500 patients about a phishing email campaign that may have exposed some of their health information. The attack was discovered between July 9 and July 12.Account HijackingQ Human health and social work activitiesCCUSMichigan Medicine
9916/08/2019?Cable OneCable One Inc. reveals that the compromise of 14 email accounts earlier this year could have affected the personal information of some current and former employees and their family members.Account HijackingJ Information and communicationCCUSCable One
101017/08/2019?Tivoli (My Tivoli)Tivoli, the popular amusement park in Denmark, reveals that its website was compromised early August and up to a thousand guests had their personal information stolen.UnknownR Arts entertainment and recreationCCDKTivoli, My Tivoli
IDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.