EVENTS
0
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY

The first cyber attacks timeline of July is finally out. In this fortnight I have collected 101 events, a number in line with the previous one (102), confirming a strong characterization by ransomware in the threat landscape, despite in sensible decrease compared to the previous one.

In this timeline, 23 out of 101 event (roughly 23%) are directly or indirectly characterized by ransomware, but the number per se don’t tell the whole story. The first week of July has seen one of the most devastating attacks (Kaseya) carried out by the REvil gang, and targeting more than 1,000 organizations at once. Curiously the group disappeared from the internet shortly after the attack. Unfortunately for one gang that disappears, many others emerge, so there have been many more incidents caused by ransomware actors such as Babuk (an unwelcome return), DarkSide, etc…

More high-profile targets in the list of victims of mega breaches including 91 million records leaked from the Mexican Electoral Institute. And similarly, the exploitation in the wild of 0-day vulnerabilities (including vulnerabilities targeting Microsoft and Google products) continues to play a primary role in the threat landscape driven by both cyber espionage and cyber criminal purposes.

And this fortnight even the cyber espionage front appears to be quite crowded. Besides the usual suspect Nobelium (AKA APT29 or Cozy Bear), this timeline shows additional campaigns from know well actors such as: TA453 (AKA Charming Kittens), APT28 (AKA Fancy Bear), the Lazarus Group, and Tortoiseshell.

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

BREACHOMETER

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

12 MONTHS TREND
POPULAR POSTS
  • Leaky Buckets: a List of Cloud Misconfigurations

    Cloud services are playing a crucial role to guarantee business continuity during this complicated period...

  • 2021 Cyber Attacks Statistics

    And finally I have aggregated all the data collected in 2021 from the cyber attacks timelines. In the past year I have collected 2539 events, meaning...

  • November 2023 MotivationsNovember 2023 Cyber Attacks Statistics

    November 2023 saw a rise to 39 events, with Cyber Crime remaining dominant at 78.7%. Cyber Espionage increased to 9.7%, while Hacktivism fell to 5.4%. Malware was the leading attack technique at 42.1%, and Multiple Organizations were the most targeted at 17.7%.

  • 2020 Cyber Attacks Statistics

    As promised, I have pulled together some statistics from the data collected in 2020. The master table is available at the end of the post after the charts.

  • Leaky Buckets in 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the incidents due to cloud misconfigurations and leading to...

FOLLOW ME ON TWITTER

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.