And after the corresponding timelines (part I and part II) I can finally publish the statistics related to the events collected during December 2021. Despite the Christmas break I have collected 217 events, corresponding to a nearly 10% increase compared with November.
Cyber crime continues to lead the Motivations chart, but for the second time in a row its percentage drops again to 74.2% from 80%. And once again the explanation resides in the growth of cyber espionage, fueled by the exploitation of vulnerabilities, which grows to 18% from 15% (that was already the higher number recorded so far.)
And easily predictable, the percentage of attacks carried out via malware continues to decrease even in the Attack Techniques chart. The percentage observed in December, 34.6%, is very close to the one of the previous mounth (35.5%) but still far from 49.2% of October. Malware leads the cart, but the exploitation of vulnerabilities jumps at number two among the known techniques (to 12.9% from 7%), while account takeovers slide at number three with 12.4% from 17%. It’s also worthwhille to notice the impact of fake social accounts (10.1%) due to the discovery of multiple cyber mercenary operations using the main social media platforms as their launchpad.
Last but not least, multiple targets lead the Target Distribution with 30.4% (from 25.5%), ahead of individuls (up to 17.5% from 11.5%, a consequence of the multiple surveillance operations unearthed in this month) and healthcare targets with 11.5% from 13.5% of November.)
Check out the interactive charts and the statistics, also available as an infographic.
Events Daily Breakdown (December 2021) hackmageddon.com | |
Motivations (December 2021) hackmageddon.com | |
Attack Techniques (December 2021) hackmageddon.com | |
Target Distribution (December 2021) hackmageddon.com | |
Target Breakdown by Motivation (December 2021) hackmageddon.com | |
Target Breakdown by Techniques (December 2021) hackmageddon.com |
As always bear in mind that the sample refers exclusively to the attacks included in my timelines, available from public sources such as blogs and news sites. Obviously the sample cannot be complete, but only aims to provide an high level overview of the threat landscape.
May 2022 Cyber Attack Statistics
After the corresponding cyber attacks timelines, it’s time to publish the statistics of May 2022 once again, unsurprisingly, characterized by…
16-31 May 2022 Cyber Attacks Timeline
The second timeline of May 2022 is out. In the second half of the month I collected 120 events, corresponding to an average of 7.50 events/day, an important…
1-15 May 2022 Cyber Attacks Timeline
The first timeline of May 2022 is out. In the first half of the month I collected 101 events, that is an average of 6.73 events/day. The level of activity, reflected by…
April 2022 Cyber Attacks Statistics
After the cyber attacks timelines, it’s time to publish the statistics of April 2022, once again characterized…
16-30 April 2022 Cyber Attacks Timeline
The second timeline of April 2022 is finally out. In this fortnight I have collected 97 events that corresponds to an average of 6.47 events/day, despite…
1-15 April 2022 Cyber Attacks Timeline
After the peak of March (in the meantime I have added more records to the previous timeline bringing the total to 150), the level of activity continues to be…
Leaky Buckets in 2022
Similarly to what I have done in 2021, I am now collecting the incidents due to cloud misconfigurations and leading to the exposure of data.
Cloud-Native Threats in 2022
This blog post lists the main cloud-native threats, that is those cyber events exploiting the cloud in one or more stage of the kill chain. I have collected…
The Biggest Data Breaches of 2022
Similarly to what I have done in 2021, I am collecting all the mega breaches (with more than 1 million records leaked). The information is derived from the cyber attacks timelines…
November 2021 Cyber Attack Statistics
uring November 2021, I have collected 200 events (in the first and second timeline) that I am finally aggregating into statistics. A number very close to the 200 events that I collected during the previous month. Cyber crime continues…
Finally, please support my work, sharing the content, and of course follow @paulsparrows on Twitter for the latest updates.
Support my work! Make a donation!
May 2022 Cyber Attack Statistics
After the corresponding cyber attacks timelines, it’s time to publish the statistics of May 2022 once again, unsurprisingly, characterized by…
16-31 May 2022 Cyber Attacks Timeline
The second timeline of May 2022 is out. In the second half of the month I collected 120 events, corresponding to an average of 7.50 events/day, an important…
1-15 May 2022 Cyber Attacks Timeline
The first timeline of May 2022 is out. In the first half of the month I collected 101 events, that is an average of 6.73 events/day. The level of activity, reflected by…
April 2022 Cyber Attacks Statistics
After the cyber attacks timelines, it’s time to publish the statistics of April 2022, once again characterized…
16-30 April 2022 Cyber Attacks Timeline
The second timeline of April 2022 is finally out. In this fortnight I have collected 97 events that corresponds to an average of 6.47 events/day, despite…
1-15 April 2022 Cyber Attacks Timeline
After the peak of March (in the meantime I have added more records to the previous timeline bringing the total to 150), the level of activity continues to be…
Leaky Buckets in 2022
Similarly to what I have done in 2021, I am now collecting the incidents due to cloud misconfigurations and leading to the exposure of data.
Cloud-Native Threats in 2022
This blog post lists the main cloud-native threats, that is those cyber events exploiting the cloud in one or more stage of the kill chain. I have collected…
The Biggest Data Breaches of 2022
Similarly to what I have done in 2021, I am collecting all the mega breaches (with more than 1 million records leaked). The information is derived from the cyber attacks timelines…
16-31 December 2021 Cyber Attacks Timeline
Here we go with the last cyber attacks timeline of 2021 where i have collected 91 events (5.7 per day), meaning that apparently the Christmas season has lead to…
May 2022 Cyber Attack Statistics
After the corresponding cyber attacks timelines, it’s time to publish the statistics of May 2022 once again, unsurprisingly, characterized by…
16-31 May 2022 Cyber Attacks Timeline
The second timeline of May 2022 is out. In the second half of the month I collected 120 events, corresponding to an average of 7.50 events/day, an important…
1-15 May 2022 Cyber Attacks Timeline
The first timeline of May 2022 is out. In the first half of the month I collected 101 events, that is an average of 6.73 events/day. The level of activity, reflected by…
April 2022 Cyber Attacks Statistics
After the cyber attacks timelines, it’s time to publish the statistics of April 2022, once again characterized…
16-30 April 2022 Cyber Attacks Timeline
The second timeline of April 2022 is finally out. In this fortnight I have collected 97 events that corresponds to an average of 6.47 events/day, despite…
1-15 April 2022 Cyber Attacks Timeline
After the peak of March (in the meantime I have added more records to the previous timeline bringing the total to 150), the level of activity continues to be…
Leaky Buckets in 2022
Similarly to what I have done in 2021, I am now collecting the incidents due to cloud misconfigurations and leading to the exposure of data.
Cloud-Native Threats in 2022
This blog post lists the main cloud-native threats, that is those cyber events exploiting the cloud in one or more stage of the kill chain. I have collected…
The Biggest Data Breaches of 2022
Similarly to what I have done in 2021, I am collecting all the mega breaches (with more than 1 million records leaked). The information is derived from the cyber attacks timelines…
1-15 December 2021 Cyber Attacks Timeline
Let’s start the new infosec year with the first cyber attacks timeline of December 2021. In this timeline I have collected 121 events, with a daily average number of 8.07 events, a sharp increase compared to…
May 2022 Cyber Attack StatisticsAfter the corresponding cyber attacks timelines, it’s time to publish the statistics of May 2022 once again, unsurprisingly, characterized by...
16-31 May 2022 Cyber Attacks TimelineThe second timeline of May 2022 is out. In the second half of the month I collected 120 events, corresponding to an average of 7.50 events/day, an important...
2021 Cyber Attacks StatisticsAnd finally I have aggregated all the data collected in 2021 from the cyber attacks timelines. In the past year I have collected 2539 events, meaning...
The Biggest Data Breaches of 2021With this new project I am going to track the biggest data breaches of 2021 extracted from my cyber attack timelines.
1-15 May 2022 Cyber Attacks TimelineThe first timeline of May 2022 is out. In the first half of the month I collected 101 events, that is an average of 6.73 events/day. The level of activity, reflected by...
