EVENTS
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY
0

It’s time to publish the second cyber attacks timeline of March, covering the main events occurred in the second half of this month. In this timeline I have collected 123 events, with an average rate of 7.7 events per day.

The ProxyLogon vulnerability continue to characterize this period, with new cyber criminal groups trying to capitalize it (such as the Black Kingdom ransomware).

Effectively, ransomware is still the top threat with nearly 23% of events (but they could be many more since too many organizations still do not completely disclose the reason of some unspecified “outages”.

Always related to ransomware is the exploitation of the Accellion FTA 0-day, (carried out by the Clop and FIN11 gangs), whose effect must not be underestimated: eight additional high-profile victims have joined the list in this timeline.

On the Cyber Espionage front, this timeline has seen multiple campaigns carried out by threat actors such as Mustang Panda (AKA RedDelta), targeting multiple telco organizations worldwide, China Chopper (exploiting the ProxyLogon vulnerability), Charming Kitten, the Lazarus Group, and an unspecified “sophisticated threat actor” discovered by Google exploiting 11 0-day vulnerabilities on Android and iOS.

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Last but not least, on the cyber crime front,another important trend to consider is the occurrence of new mega breaches targeting organizations in India, Israel, The Netherlands, and the US.

BREACHOMETER

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

12 MONTHS TREND
RECOMMENDED
POPULAR POSTS
  • network servers on an enclosureCVEs Targeting Remote Access Technologies

    In this first quarter of 2024, threat actors have been particularly busy in exploiting vulnerabilities (0-days but also old unpatched flaws) targeting traditional remote access technologies. In this blog post I summarized the main CVEs exploited so far in 2024.

  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • close up view of system hacking16-31 January 2024 Cyber Attacks Timeline

    In the second timeline of January 2024 I collected 168 events (10.50 events/day), dominated by ransomware, ahead of malware and the exploitation of vulnerabilities. There were also several mega breaches, multiple operations against fintech organizations, and the usual wave of attacks motivated by cyber espionage.

  • Q4 2023 Featured ImageQ4 2023 Cyber Attacks Statistics

    In Q4 2023, cyber attack events decreased by 7.1% to 1029 compared to the previous quarter. Cybercrime remains the primary motive, although slightly reduced, while malware tops attack techniques, increasing from the last quarter. Multiple industries and healthcare are the most targeted sectors. These statistics ...

  • December 2023 Statistics Featured ImageDecember 2023 Cyber Attacks Timeline

    December 2023 saw a decline in cyber events to 260 from November's 390, with Cyber Crime still leading at 75.4%. Cyber Espionage rose to 10.4%, Hacktivism to 7.3%, and Cyber Warfare doubled to 4.2%. Malware attacks led at 38.5%, while Account Takeovers and Targeted Attacks ...

FOLLOW ME ON TWITTER

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.