EVENTS
0
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY

The first cyber attacks timeline of October 2021 is here and let me say that, at least in terms of numbers, I have recorded a new low for this year: 77 events in comparison with 108 of the previous timeline. Nonetheless, ransomware continues to dominate the threat landscape, characterizing, directly or indirectly, 28.6% of events (it was 26.8% in the previous timeline) with more high-profile victims, especially in the healthcare sector, joining the list of the targets.

Vulnerabilities continue to be one of the preferred inital access vectors for attackers for opportunistic and state-sponsored attackers: a Chinese threat actor dubbed IronHusky, was discovered targeting IT companies, military/defense contractors, and diplomatic entities since 2012 using a new 0-day tracked as CVE-2021-40449, the Atom Silo ransomware gang started to target Confluence servers vulnerable to CVE-2021-26084, and even the Apache Software Foundation had to patch its Web Server to address three vulnerabilites, one of which, CVE-2021-41773, was actively exploited by attackers.

But even the mobile operating systems are under attack: Apple released iOS 15.0.2 and iPadOS 15.0.2 to fix CVE-2021-30883, a zero-day vulnerability actively exploited in the wild.

As always the cyber espionage front is rich of events. APT28 is always very active, and Google had to send out email notifications to more than 14,000 Gmail users, victims of a spear-phishing attack orchestrated by the same actor… But they are not the only ones. Besides the above quoted IronHusky, the timeline includes fresh new campaigns by APT35, APT41, the Donot Team, and also a new actor dubbed DEV-0343 targeting the Office 365 tenants of US and Israeli defense technology companies in extensive password spraying attacks.

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

SUPPORT MY WORK!

BREACHOMETER

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

12 MONTHS TREND
POPULAR POSTS
  • Photo by Adi Goldstein on Unsplash1-15 June 2022 Cyber Attacks Timeline

    The first timeline of June 2022 is out. In the first half of the month I collected 109 events, corresponding to an average of 7.27 events/day, in line with the sustained level of activity that is characterizing the latest months. And if...

  • Photo by Philipp Katzenberger on Unsplash16-31 May 2022 Cyber Attacks Timeline

    The second timeline of May 2022 is out. In the second half of the month I collected 120 events, corresponding to an average of 7.50 events/day, an important...

  • May 2022 Featured ImageMay 2022 Cyber Attack Statistics

    After the corresponding cyber attacks timelines, it’s time to publish the statistics of May 2022 once again, unsurprisingly, characterized by...

  • 2021 Cyber Attacks Statistics

    And finally I have aggregated all the data collected in 2021 from the cyber attacks timelines. In the past year I have collected 2539 events, meaning...

  • 2020 Cyber Attacks Statistics

    As promised, I have pulled together some statistics from the data collected in 2020. The master table is available at the end of the post after the charts.

FOLLOW ME ON TWITTER
Photo by Adi Goldstein on Unsplash

1-15 June 2022 Cyber Attacks Timeline

The first timeline of June 2022 is out. In the first half of the month I collected 109 events, corresponding to an average of 7.27 events/day, in line with the sustained level of activity that is characterizing the latest months. And if…

Continue Reading

The Perfect Storm

I have decided to create a new timeline tracking the high-impact vulnerabilities targeting both remote access and on-premise technologies exploited…

Continue Reading
Photo by Adi Goldstein on Unsplash

1-15 June 2022 Cyber Attacks Timeline

The first timeline of June 2022 is out. In the first half of the month I collected 109 events, corresponding to an average of 7.27 events/day, in line with the sustained level of activity that is characterizing the latest months. And if…

Continue Reading

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.