It’s time to publish the second cyber attacks timeline of March, covering the main events occurred in the second half of this month. In this timeline I have collected 123 events, with an average rate of 7.7 events per day.

The ProxyLogon vulnerability continue to characterize this period, with new cyber criminal groups trying to capitalize it (such as the Black Kingdom ransomware).

Effectively, ransomware is still the top threat with nearly 23% of events (but they could be many more since too many organizations still do not completely disclose the reason of some unspecified “outages”.

Always related to ransomware is the exploitation of the Accellion FTA 0-day, (carried out by the Clop and FIN11 gangs), whose effect must not be underestimated: eight additional high-profile victims have joined the list in this timeline.

On the Cyber Espionage front, this timeline has seen multiple campaigns carried out by threat actors such as Mustang Panda (AKA RedDelta), targeting multiple telco organizations worldwide, China Chopper (exploiting the ProxyLogon vulnerability), Charming Kitten, the Lazarus Group, and an unspecified “sophisticated threat actor” discovered by Google exploiting 11 0-day vulnerabilities on Android and iOS.

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Last but not least, on the cyber crime front,another important trend to consider is the occurrence of new mega breaches targeting organizations in India, Israel, The Netherlands, and the US.


The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • 2022 Cyber Attacks Statistics

    And finally I have aggregated all the data collected in 2022 from the cyber attacks timelines. In the past year I have collected 3074 events...

  • February 2023 Cyber Attacks Statistics

    After the cyber attacks timelines, it’s time to publish the statistics of February 2023 where I have collected and analyzed...

  • January 2023 Cyber Attacks Statistics

    After the cyber attacks timelines, it’s time to publish the statistics of January 2023 where I have collected and analyzed...

  • TCP Split Handshake Attack Explained

    Update May 12: TCP Split Handshake: Why Cisco ASA is not susceptible Update May 11: The Never Ending Story Update April 21: Other Considerations on TCP Split Handshake Few days ago, independent security research and testing NSS Labs, issued a comparative report among six network security ...


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.