The growing trend of attacks continued also in the second half of August, where I collected 144 events. Despite the numbers are decreasing in comparison with the previous timeline, the overall level of activity remains significant.

The new wave of ransomware attack, driven especially by the gangs BlackCat (AKA ALPHV) and LockBit 3.0 continued also in the second fortnight, characterizing 39 out of 144 events (27%) in line with the previous timeline. Similarly the impact of vulnerabilities continue to decrease (10 out of 144 events, corresponding to 6.9%.)

Image by wastedgeneration from Pixabay

1-15 December 2023 Cyber Attacks Timeline

In early December 2023, event recordings decreased significantly to 135, with ransomware dominating 35.5% of incidents. The period saw a notable data breach at ESO Solutions, affecting 2.7 million patients, and a $2.7 million crypto theft at OKX. Geopolitical tensions spurred active cyber espionage, with APT28 exploiting critical vulnerabilities. The author encourages timeline review and community risk awareness support.

Continue Reading

And if, at least for once, the massive hacks against crypto platform experienced a break, one cannot say the same for the mega breaches: more than 10 million records were  leaked in two incidents occurred to a technology service provider in the US (2.5 million), and a media streaming company in Russia (7.5 million.)

The effects of the conflict in Ukraine continue also in the cyber space: pro-Russian hacktivists continue to be very active, and in the second half of August Energoatom (Ukraine’s state nuclear power company) and multiple websites in Estonia, including ESTO AS, the main local payment provider fell on their knees under the blows of the hacktivists.

One concerning trend is also the growing number of misinformation campaigns carried out via Coordinated Inauthentic Behavior. Most of them were predictably orchestrated by pro-Russian entities, but in one case, a long-lasting pro-U.S. campaign was unearthed.

And as usual, the cyber espionage front is always rich of events, even if with a minor impact in comparison to the previous timelines. the timeline reports new campaigns by the usual suspects such as: APT29, Charming Kitten, Kimsuky, and MuddyWater, but also emerging actors such as RedAlpha, TA423, and UNC3890.

As usual the list is too long to be summarized in few words (this one in particular), so my suggestion is to enjoy the interactive timeline and the tabular format, and obviously thanks for sharing it, and supporting my work in spreading the risk awareness across the community. As always, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Expand for details

Geo Map August H2 2022

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

  • Image by Pete Linforth from Pixabay1-15 May 2023 Cyber Attacks Timeline

    In the first half of May 2023 I collected 173 events (corresponding to 11.53 events/day), a value that confirms the sustained trend characterizing this year from an information security perspective.

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • August 2016 Cyber Attacks Statistics

    It's time to publish the statistics derived from the cyber attacks timelines of August (Part I and Part II), a month particularly active from an Information Security perspective, despite the Summer time. As always, let’s start from the Daily Trend Chart, which shows obviously an ...

  • Leaky Buckets in 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the incidents due to cloud misconfigurations and leading to...

  • November 2023 MotivationsNovember 2023 Cyber Attacks Statistics

    November 2023 saw a rise to 39 events, with Cyber Crime remaining dominant at 78.7%. Cyber Espionage increased to 9.7%, while Hacktivism fell to 5.4%. Malware was the leading attack technique at 42.1%, and Multiple Organizations were the most targeted at 17.7%.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.