16-31 December 2019 Cyber Attacks Timeline

With the second timeline of December (the last for this year), we definitively leave 2019 behind us from an infosec perspective. In this timeline I have collected a total of 80 events, including 2 that should have been published in the previous timeline (but were missed). All an all we are in line with the previous timeline, and if you were expecting a break for the Christmas season, you have probably been disappointed.

And unfortunately, the Christmas season didn’t even stop the ransomware breaches, which characterize this timeline as well, confirming the trend of 2019: you will see multiple targets in different sectors, especially education, government and healthcare.

Looking at other events pertaining to Cybercrime, another interesting trend is the comeback of breaches due to PoS Malware: in particular there have been four cases in this fortnight. Additionally, Emotet continues to be a continuous threat.

Last but not least, as usual, even the cyber espionage front is quite “crowded”: this fortnight has seen multiple operations by threat actors like: APT10, The Lazarus Group, Rancor, along with the discovery of new victims of APT20, during the infamous operation Cloud Hopper, and the takedown of the infrastructure used by Thallium.

But for the details of each operation, including the ones that I could not mention in the summary, browse the timeline, and share it with your peers to support my work and spread the risk awareness across the community. And don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: