16-30 November 2019 Cyber Attacks Timeline

The second timeline of November is here, covering the main events reported in the news during the second half of the same month (at this link you will find the first one).

In the following table, I have collected a total of 63 events. I don’t know if this is the consequence of the Christmas atmosphere, but this number is definitely lower than the average level recorded in the previous months (just in the first half of November we had 82 events). We’ll see if this is an isolated occurrence or the beginning of a nee trend.

Unsurprisingly ransomware attacks continue to characterize this 2019, and the end of the year is no exception. Once again we must record an increasing list of victims including Managed service providers, which continue to be a consolidated target (since they allow to dramatically increase the blast radius of the attack): Virtual Care Provider Inc. is the most noticeable example of this month. But even governments are constantly in the list (this month it has been the turn of Louisiana with 79 systems down) and also Prosegur, a Spanish security firm, has been hit.

Schools and hospitals are also constantly targeted: the University Hospital Centre (CHU) in Rouen was forced to switch off to paper in the wake of a ransomware attack.

We hadn’t recorded an attack against a cryptocurrency exchange since a while, but unfortunately this positive trend has been interrupted: South Korean cryptocurrency exchange Upbit has suffered the theft of $48.5 million in cryptocurrency (342,000 in Ethereum at the time of writing).

Instead massive breaches are always under the corner, and this month has left us with the one at Mixcloud, an audio streaming platform, which had more than 20 million user accounts exposed.

Moving to the Cyber Espionage-drive events, this front is always pretty hot: this timeline has led us multiple operations carried out by new actors and old acquaintances such as APT33 and Longhorn, but also the revelation of a wave of attacks allegedly launched from Chinese actors against the Belgium’s trade mission to China.

Last but not least, the hacktivist Phineas Fisher, revealing to have hacked (confirmed by the victim) The Cayman National Bank (Isle of Man) Limited, and offering a bounty for other hacktivists to do the same against Banks and Oils companies.

But now you can browse the timeline, and don’t forget to share it with your peers to support my work and spread the concept of risk awareness across the community. If you want, you can also follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: