The Autumn has begun, and I can finally publish the first timeline of September 2021. Despite we are still far from the highest peaks of activity of this year, in this timeline I have collected 93 events, an increase in comparison with the 78 of the previous timeline. Ransomware continues to dominate the threat landscape, with a percentage similar to the previous period (25.8% vs 24.4% (24 out of 93 events) and with new high-profile victims joining the unwelcome list of the victims.

A trend that is characterizing this year and seems endless is the exploitation of high-profile vulnerabilities. In this timeline you will find multiple events occurred exploiting en-masse software flaws on Confluence (CVE-2021-26084), Zoho (CVE-2021-40539), and the Microsoft MSHTML rendering engine CVE-2021-40444, without considering the dump of 500,000 VPN credentials obtained through the old CVE-2018-13379.

Interestingly enough, this timeline also contains some mega breaches, the worst of which is undoubtedly the leak by the Anonymous collective of 15 million records from Epik, a controversial web hosting provider. Other interesting events happened in Israel and France. I am talking about the leak of the personal data belonging to 7 million Israelis from the CITY4U website, and around 1.4 million people who took COVID-19 tests in the Paris. .

Not so much to mention, numerically, on the cyber espionage front, except maybe the revelation of an attack targeting the United Nations, Other interesting events include a new campaign by Mustang Panda targeting at least ten Indonesian government ministries and agencies, and some APT actors exploiting the above mentioned Zoho vulnerability.

Last but not least, two misinformation campaigns were unearthed in this fortnight respectively pro-Russia and pro-China (how weird!)

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.



The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

  • Free cyber security concept background1-15 March 2024 Cyber Attacks Timeline

    In the first timeline of March 2024, I collected 98 events, once again characterized malware and ransomware attacks. State-sponsored threat actor were equally quite active, but the timeline also features some interesting events related to cyberwarfare.

  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • February 2024 Statistics Featured ImageFebruary 2024 Cyber Attacks Statistics

    In February 2024 I collected and analyzed 239 events. Cyber Crime continued to lead the Motivations chart with 68.6%. Operations driven by Cyber Espionage ranked at number two with 16.7%, ahead of Cyber Warfare (4.6%) and Hacktivism (3.3%).

  • 2020 Cyber Attacks Statistics

    As promised, I have pulled together some statistics from the data collected in 2020. The master table is available at the end of the post after the charts.

  • Q4 2022 Cyber Attacks Statistics

    I have aggregated the statistics created from the cyber attacks timelines published during Q4 2022) In total I collected...


The Perfect Storm

I have decided to create a new timeline tracking the high-impact vulnerabilities targeting both remote access and on-premise technologies exploited…

Continue Reading

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.