As you can easily imagine, the first cyber attacks timeline of March 2022 is characterized by the invasion of Ukraine carried out by the Russian Federation, which is obviously  affecting the cyber space as well.

I tried to keep the pace with the multiple attacks that the Anonymous and their affiliates have carried out against Russian assets, probably the timeline is a little bit confused and there are some overlaps, hopefully you will appreciate the effort. At the end I have collected 17 events related to the Anonymous (17% of the sample given that this timeline has 100 records) and 13 events (13% of the sample) related to Cyber Warfare.

This complicated situation has also impacted the cyber espionage front, where there have been multiple operations connected with the Ukrainian situation, such as the ‘Asylum Ambuscade’ carried out by the Belarusian actor Ghostwriter and targeting European government personnel involved in managing the logistics of refugees fleeing Ukraine (and this is not the only operation by the same group present in this timeline). Other actors involved in the Ukrainian situation involve the Chinese group ‘Mustang Panda’. Other state-sponsored threat actors that appear in this timeline include APT28, APT31, and APT41.

Ransomware attacks drop to a 8% low (despite the real number is probably much higher given that in multiple cases, appearing in the timeline as ‘Unknown’, the organizations do not disclose the reason of the attack that led to an outage. Similarly, also the attacks caused by vulnerabilities reached the lower value of the last few months with 7%.

Last but not least, the $Lapsus extortion group started its hacking spree, leaking the source code of a well-known manufacturer of mobile devices.

Expand for details

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.



The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

  • network servers on an enclosureCVEs Targeting Remote Access Technologies

    In this first quarter of 2024, threat actors have been particularly busy in exploiting vulnerabilities (0-days but also old unpatched flaws) targeting traditional remote access technologies. In this blog post I summarized the main CVEs exploited so far in 2024.

  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • List Of Hacked Celebrities Who Had (Nude) Photos Leaked

    During Summer we always try to spend our free time in a more profitable manner, for instance reading gossip chronicles. From this point of view, July 2012 has not been a particularly lucky month for Carly Rae Jepsen. On July the 7th, her website has been ...

  • Q4 2023 Featured ImageQ4 2023 Cyber Attacks Statistics

    In Q4 2023, cyber attack events decreased by 7.1% to 1029 compared to the previous quarter. Cybercrime remains the primary motive, although slightly reduced, while malware tops attack techniques, increasing from the last quarter. Multiple industries and healthcare are the most targeted sectors. These statistics ...

  • computer program language text1-15 February 2024 Cyber Attacks Timeline

    In the cyber attacks timeline of February H1 2024, I collected 139 events dominated by malware attacks. Ransomware and vulnerabilities also played an important role in the threat landscape.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.