Let’s kick off this infosec year with the first cyber attacks timeline for January 2023. In this fortnight I have collected 132 events, ten events more than the previous timeline, which bring the daily average to 8.8 events per day. If we look back at January 2021, back then we collected 93 events, meaning a 42% increase.

Events characterized by ransomware were stable around 30% (40 out of 132, it was 35% in the previous timeline) thanks primarily to the threat actor of Vice Society that leaked the data exfiltrated from eleven schools in the U.K., whilst 15 out of 132 events (corresponding to 11.36%) were characterized by the exploitation of vulnerabilities, an important increase compared to 5.9% of events (8 out of 122) of the previous fortnight.

Image by wastedgeneration from Pixabay

1-15 December 2023 Cyber Attacks Timeline

In early December 2023, event recordings decreased significantly to 135, with ransomware dominating 35.5% of incidents. The period saw a notable data breach at ESO Solutions, affecting 2.7 million patients, and a $2.7 million crypto theft at OKX. Geopolitical tensions spurred active cyber espionage, with APT28 exploiting critical vulnerabilities. The author encourages timeline review and community risk awareness support.

Continue Reading

The fintech sector continues to be under pressure, with multiple campaigns targeting crypto companies and their users.

In the meantime, Twitter was the victim of yet another mega breach, with approximately 200 million profiles leaked and put on sale by a threat actor, and similarly an attack against an undisclosed marketing provider in Japan, caused the leak of nearly 2 million records belonging to Japanese customers of two large insurance companies.

The hacktivist front was always hot, fueled by the campaigns of pro-Russian threat actors such as NoName057(16), similarly to the cyber espionage, not so many operations, apparently, but hitting very high-profile targets: Cold River (AKA Calisto) hit three nuclear laboratories in the U.S., a new operation from the Turla Russian threat actor was unearthed, targeting organizations in Ukraine, and the list is completed by Strong Pity and Dark Pink, for which a new cluster of malicious activities were similarly discovered.

Even in this fortnight, the list is too long to be summarized in few words (this one in particular), so my suggestion is to enjoy the interactive timeline and the tabular format, and obviously thanks for sharing it, and supporting my work in spreading the risk awareness across the community. As always, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Expand for details

Geo Map January H1 2023

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • Image by Pete Linforth from Pixabay1-15 May 2023 Cyber Attacks Timeline

    In the first half of May 2023 I collected 173 events (corresponding to 11.53 events/day), a value that confirms the sustained trend characterizing this year from an information security perspective.

  • November 2023 MotivationsNovember 2023 Cyber Attacks Statistics

    November 2023 saw a rise to 39 events, with Cyber Crime remaining dominant at 78.7%. Cyber Espionage increased to 9.7%, while Hacktivism fell to 5.4%. Malware was the leading attack technique at 42.1%, and Multiple Organizations were the most targeted at 17.7%.

  • Leaky Buckets in 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the incidents due to cloud misconfigurations and leading to...

  • 2020 Cyber Attacks Statistics

    As promised, I have pulled together some statistics from the data collected in 2020. The master table is available at the end of the post after the charts.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.