And after the corresponding timelines (part I and part II) I can finally publish the statistics related to the events collected during December 2021. Despite the Christmas break I have collected 217 events, corresponding to a nearly 10% increase compared with November.
Cyber crime continues to lead the Motivations chart, but for the second time in a row its percentage drops again to 74.2% from 80%. And once again the explanation resides in the growth of cyber espionage, fueled by the exploitation of vulnerabilities, which grows to 18% from 15% (that was already the higher number recorded so far.)
And easily predictable, the percentage of attacks carried out via malware continues to decrease even in the Attack Techniques chart. The percentage observed in December, 34.6%, is very close to the one of the previous mounth (35.5%) but still far from 49.2% of October. Malware leads the cart, but the exploitation of vulnerabilities jumps at number two among the known techniques (to 12.9% from 7%), while account takeovers slide at number three with 12.4% from 17%. It’s also worthwhille to notice the impact of fake social accounts (10.1%) due to the discovery of multiple cyber mercenary operations using the main social media platforms as their launchpad.
Last but not least, multiple targets lead the Target Distribution with 30.4% (from 25.5%), ahead of individuls (up to 17.5% from 11.5%, a consequence of the multiple surveillance operations unearthed in this month) and healthcare targets with 11.5% from 13.5% of November.)
Check out the interactive charts and the statistics, also available as an infographic.
Events Daily Breakdown (December 2021) hackmageddon.com | |
Motivations (December 2021) hackmageddon.com | |
Attack Techniques (December 2021) hackmageddon.com | |
Target Distribution (December 2021) hackmageddon.com | |
Target Breakdown by Motivation (December 2021) hackmageddon.com | |
Target Breakdown by Techniques (December 2021) hackmageddon.com |
As always bear in mind that the sample refers exclusively to the attacks included in my timelines, available from public sources such as blogs and news sites. Obviously the sample cannot be complete, but only aims to provide an high level overview of the threat landscape.
October 2022 Cyber Attacks Statistics
After the cyber attacks timelines, it’s time to publish the statistics of October 2022 where I have collected and analyzed…
16-31 October 2022 Cyber Attacks Timeline
In the second timeline of October, I have collected 130 events (corresponding to 8.13 events/day), a noticeable drop compared to the 144 of the previous timeline. I wonder if…
1-15 October 2022 Cyber Attacks Timeline
It really looks like that October won’t change the trend of the latest months: the level of cyber activity…
Q3 2022 Cyber Attacks Statistics
I have aggregated the statistics created from the cyber attacks timelines published during Q3 2022. In total I collected…
Leaky Buckets in 2022
Similarly to what I have done in 2021, I am now collecting the incidents due to cloud misconfigurations and leading to the exposure of data.
Cloud-Native Threats in 2022
This blog post lists the main cloud-native threats, that is those cyber events exploiting the cloud in one or more stage of the kill chain. I have collected…
The Biggest Data Breaches of 2022
Similarly to what I have done in 2021, I am collecting all the mega breaches (with more than 1 million records leaked). The information is derived from the cyber attacks timelines…
November 2021 Cyber Attack Statistics
uring November 2021, I have collected 200 events (in the first and second timeline) that I am finally aggregating into statistics. A number very close to the 200 events that I collected during the previous month. Cyber crime continues…
Finally, please support my work, sharing the content, and of course follow @paulsparrows on Twitter for the latest updates.
Support my work! Make a donation!
October 2022 Cyber Attacks Statistics
After the cyber attacks timelines, it’s time to publish the statistics of October 2022 where I have collected and analyzed…
16-31 October 2022 Cyber Attacks Timeline
In the second timeline of October, I have collected 130 events (corresponding to 8.13 events/day), a noticeable drop compared to the 144 of the previous timeline. I wonder if…
1-15 October 2022 Cyber Attacks Timeline
It really looks like that October won’t change the trend of the latest months: the level of cyber activity…
Q3 2022 Cyber Attacks Statistics
I have aggregated the statistics created from the cyber attacks timelines published during Q3 2022. In total I collected…
Leaky Buckets in 2022
Similarly to what I have done in 2021, I am now collecting the incidents due to cloud misconfigurations and leading to the exposure of data.
Cloud-Native Threats in 2022
This blog post lists the main cloud-native threats, that is those cyber events exploiting the cloud in one or more stage of the kill chain. I have collected…
The Biggest Data Breaches of 2022
Similarly to what I have done in 2021, I am collecting all the mega breaches (with more than 1 million records leaked). The information is derived from the cyber attacks timelines…
16-31 December 2021 Cyber Attacks Timeline
Here we go with the last cyber attacks timeline of 2021 where i have collected 91 events (5.7 per day), meaning that apparently the Christmas season has lead to…
October 2022 Cyber Attacks Statistics
After the cyber attacks timelines, it’s time to publish the statistics of October 2022 where I have collected and analyzed…
16-31 October 2022 Cyber Attacks Timeline
In the second timeline of October, I have collected 130 events (corresponding to 8.13 events/day), a noticeable drop compared to the 144 of the previous timeline. I wonder if…
1-15 October 2022 Cyber Attacks Timeline
It really looks like that October won’t change the trend of the latest months: the level of cyber activity…
Q3 2022 Cyber Attacks Statistics
I have aggregated the statistics created from the cyber attacks timelines published during Q3 2022. In total I collected…
Leaky Buckets in 2022
Similarly to what I have done in 2021, I am now collecting the incidents due to cloud misconfigurations and leading to the exposure of data.
Cloud-Native Threats in 2022
This blog post lists the main cloud-native threats, that is those cyber events exploiting the cloud in one or more stage of the kill chain. I have collected…
The Biggest Data Breaches of 2022
Similarly to what I have done in 2021, I am collecting all the mega breaches (with more than 1 million records leaked). The information is derived from the cyber attacks timelines…
1-15 December 2021 Cyber Attacks Timeline
Let’s start the new infosec year with the first cyber attacks timeline of December 2021. In this timeline I have collected 121 events, with a daily average number of 8.07 events, a sharp increase compared to…
October 2022 Cyber Attacks StatisticsAfter the cyber attacks timelines, it’s time to publish the statistics of October 2022 where I have collected and analyzed...
Q3 2022 Cyber Attacks StatisticsI have aggregated the statistics created from the cyber attacks timelines published during Q3 2022. In total I collected...
The Biggest Data Breaches of 2021With this new project I am going to track the biggest data breaches of 2021 extracted from my cyber attack timelines.
1-15 September 2022 Cyber Attacks TimelineSeptember confirmed the high level of activity in the cyber space. Despite the number of recorded events registered...
January 2021 Cyber Attacks StatisticsIt's time to publish the cyber attacks statistics derived from the corresponding timelines that I have recently posted. In January I have collected 160 events...
