EVENTS
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY
0

After some rest, the second cyber attacks timeline of July is finally out. It looks like the vacation period has brought a small break also in the threat landscape. In this fortnight I have collected 82 events, a considerable drop compared with the previous period.

Ransomware continues to strongly characterize this period with 21 out of 82 events (25%, a percentage in line with 23% of the previous timeline) directly or indirectly characterized by ransomware, but the real number could be higher given the number of unspecified disruptions. Despite apparently we haven’t seen high-profile events such as the one that hit Kaseya, the incidence continues to be quite high.

The Summer brought also some new mega crypto hacks. In particular THORChain was hit twice for a theoretical total amount stolen equivalent to nearly $15M worth (but in one case the alleged author has asked a 10% bounty).

The Cyber Espionage front continues to be quite crowded with new campaigns from old acquaintances such as APT29 (a new campaign discovered, whose infrastructure has been taken down), APT31 (targeting organizations in France), Mustang Panda (targeting organizations in South East Asia), and Tortoiseshell (targeting employees and contractors working in defense and aerospace), but also new threat actors such as Praying Mantis, GhostEmperor and Ekipa (a new campaign originating from Crimea targeting Russian and pro-Russian individuals),

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

BREACHOMETER

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

12 MONTHS TREND
POPULAR POSTS
  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • network servers on an enclosureCVEs Targeting Remote Access Technologies

    In this first quarter of 2024, threat actors have been particularly busy in exploiting vulnerabilities (0-days but also old unpatched flaws) targeting traditional remote access technologies. In this blog post I summarized the main CVEs exploited so far in 2024.

  • Q4 2023 Featured ImageQ4 2023 Cyber Attacks Statistics

    In Q4 2023, cyber attack events decreased by 7.1% to 1029 compared to the previous quarter. Cybercrime remains the primary motive, although slightly reduced, while malware tops attack techniques, increasing from the last quarter. Multiple industries and healthcare are the most targeted sectors. These statistics ...

  • close up view of system hacking16-31 January 2024 Cyber Attacks Timeline

    In the second timeline of January 2024 I collected 168 events (10.50 events/day), dominated by ransomware, ahead of malware and the exploitation of vulnerabilities. There were also several mega breaches, multiple operations against fintech organizations, and the usual wave of attacks motivated by cyber espionage.

  • December 2023 Statistics Featured ImageDecember 2023 Cyber Attacks Timeline

    December 2023 saw a decline in cyber events to 260 from November's 390, with Cyber Crime still leading at 75.4%. Cyber Espionage rose to 10.4%, Hacktivism to 7.3%, and Cyber Warfare doubled to 4.2%. Malware attacks led at 38.5%, while Account Takeovers and Targeted Attacks ...

FOLLOW ME ON TWITTER

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.