It really looks like that October won’t change the trend of the latest months: the level of cyber activity continues to be quite sustained, and this first half of the month was no exception: I have collected a total of 138 events (corresponding to 9.2 events/day), completely in line with the previous fortnights.

Ransomware is a primary attack vector even in this timeline, but its percentage remains around 20% (21.7% precisely, corresponding to 30 out of 138 events, very close to 19.3% of the previous timeline and far for the highest peaks of this year, so far, close to 30%).

Even the impact of vulnerabilities seems to have taken a decreasing trend. In this timeline the exploitation of software flaws characterized 9.4% of events (13 out of 138), slightly down from 11.4% of the previous timeline.

And unfortunately the first half of October was no exception even in terms of massive events hitting fintech platforms: Binance, Mango Markets, and Transit Swap were hit hard, with total losses exceeding the equivalent of $700M in crypto assets.

The situation in Ukraine continues to characterize the cyber space, but the focus is shifting towards hacktivism. In particular the Russian collective KillNet was quite busy taking down targets in the US (governments and airports) and in Bulgaria. Similarly pro-Ukraine hacktivists hit multiple targets in Russia, in the public and private sector.

The cyber espionage front was also rich of campaign: POLONIUM, Budworm, Earth Aughisky, and WIP19 are only few examples of the threat groups whose campaigns were unearthed in this timeline.

Even in this fortnight, the list is too long to be summarized in few words (this one in particular), so my suggestion is to enjoy the interactive timeline and the tabular format, and obviously thanks for sharing it, and supporting my work in spreading the risk awareness across the community. As always, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Expand for details

Geo Map October H1 2022

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

  • 16-30 September 2012 Cyber Attacks Timeline

    Part One with 1-15 September 201 Timeline Here. September is over and it’s time to analyze this month from an Information Security perspective with the second part of the Cyber Attack Timeline. Probably this month will be remembered for the massive outage of six  U.S. Banks (Bank ...

  • 16 – 31 August 2012 Cyber Attacks Timeline

    Here the first part with the timeline from 1 to 15 August 2012. Here we are with the second part of the August 2012 Cyber Attacks Timeline. A second part of the month that has been characterized by hacktivism, most of all because of the so-called ...

  • computer program language text1-15 February 2024 Cyber Attacks Timeline

    In the cyber attacks timeline of February H1 2024, I collected 139 events dominated by malware attacks. Ransomware and vulnerabilities also played an important role in the threat landscape.

  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • 16-30 November 2012 Cyber Attacks Timeline

    November has gone and it's time to review this month's cyber landscape. From a Cyber Crime perspective, November 2012 will be probably remembered for the breach to Nationwide, one of the largest insurance and financial services providers in the US, a breach that has potentially left ...


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.