Last Updated on March 1, 2021

The first timeline of February is here! I am trying hard to update the blog in a timely fashion and to introduce new charts and data to make it more insightful. Among the the new charts that I have introduced, there is a new “Breachometer”. The concept is very simple: it measures how the current timeline stacks up with the maximum and minimum values recorded in the previous 12 months.

After the apparent breaks of January the trend starts to ramp up again: this fortnight I have collected 98 events (and I have added a new chart to compare them with the previous months).

Ransomware continues to dominate the scene with 24 events (roughly 25% of the sample) but this number is probably underestimated given that in many cases the targeted organizations mention a generic “IT outage” and do not provide further details.

Another trend that is characterizing this beginning of 2021 is the return of the mega breaches (I had to create a specific page in the blog), and this timeline is no exception.

The Cyber Espionage front is equally quite crowded with multiple campaigns characterizing this first half of February carried out by well-known actors such as Sandworm, Lazarus Group, Domestic Kitten (AKA APT-C-50), BlackTech, and new outsiders such as NightScout (jumping on the supply-chain attacks bandwagon) and Cunfucius. The chronicle also report a newly discovred Chinese threat actor targeting a U.S. Government Payroll Agency via the SolarWinds breach.

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Breachometer


The “Breachometer” compares the current number of events with the max and min values recorded in the previous 24 timelines (correspondingly to roughly one year)


12 Months Trend



Popular Posts


This Post Has One Comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.