EVENTS
0
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY

After some rest, the second cyber attacks timeline of July is finally out. It looks like the vacation period has brought a small break also in the threat landscape. In this fortnight I have collected 82 events, a considerable drop compared with the previous period.

Ransomware continues to strongly characterize this period with 21 out of 82 events (25%, a percentage in line with 23% of the previous timeline) directly or indirectly characterized by ransomware, but the real number could be higher given the number of unspecified disruptions. Despite apparently we haven’t seen high-profile events such as the one that hit Kaseya, the incidence continues to be quite high.

The Summer brought also some new mega crypto hacks. In particular THORChain was hit twice for a theoretical total amount stolen equivalent to nearly $15M worth (but in one case the alleged author has asked a 10% bounty).

The Cyber Espionage front continues to be quite crowded with new campaigns from old acquaintances such as APT29 (a new campaign discovered, whose infrastructure has been taken down), APT31 (targeting organizations in France), Mustang Panda (targeting organizations in South East Asia), and Tortoiseshell (targeting employees and contractors working in defense and aerospace), but also new threat actors such as Praying Mantis, GhostEmperor and Ekipa (a new campaign originating from Crimea targeting Russian and pro-Russian individuals),

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

BREACHOMETER

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

12 MONTHS TREND
POPULAR POSTS
FOLLOW ME ON TWITTER

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.