Similarly to what I have done in 2022, 2021, and 2020,  I am listing those cyber attacks, whose information is available via OSINT, which exploited the cloud in one or more stages of the attack chain.

The campaigns are classified in four categories: Delivery and Exploitation (the cloud service is exploited to deliver a malware strain or a phishing page), Actions on Objective (the cloud service is exploited to steal data, or launch other attacks), Command and Control (the cloud service is exploited as a command and control infrastructure), and Data Exfiltration (the cloud service is used as a drop zone for the exfiltrated data).

Below you will find some statistics and a table with detailed information on the attacks.

Cloud-Native Threats 2023 - Top Exploited Cloud Services

No Data Found

Cloud-Native Threats 2023 - Top Exploitation Purposes

No Data Found

Cloud-Native Threats 2023 - Motivations

No Data Found

Cloud-Native Threats 2023 - Top Exploited Services: Delivery

No Data Found

Cloud-Native Threats 2023 - Top Exploited Services: Command and Control

No Data Found

Cloud-Native Threats 2023 - Top Exploited Services: Actions on Objective

No Data Found

Cloud-Native Threats 2023 - Top Exploited Services: Data Exfiltration

No Data Found

Cloud-Native Threats 2023 - Top Exploited Services: Cyber Crime

No Data Found

Cloud-Native Threats 2023 - Top Exploited Services: Cyber Espionage

No Data Found

Enjoy the interactive timeline, and thanks for sharing it, and supporting my work in spreading the risk awareness across the community. Also, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, or Mastodon for the latest updates.

BE NOTIFIED OF NEW BLOG POSTS: SUSCRIBE!

SUPPORT MY WORK!

Cloud-Native Threats in 2021

I am starting a new project to track cloud-native threats, similarly to what I have done in 2020, with an interactive timeline. As soon as I collect more data I will start to generate some statistics.

Continue Reading
POPULAR POSTS
  • Image by Pete Linforth from Pixabay1-15 May 2023 Cyber Attacks Timeline

    In the first half of May 2023 I collected 173 events (corresponding to 11.53 events/day), a value that confirms the sustained trend characterizing this year from an information security perspective.

  • November 2023 MotivationsNovember 2023 Cyber Attacks Statistics

    November 2023 saw a rise to 39 events, with Cyber Crime remaining dominant at 78.7%. Cyber Espionage increased to 9.7%, while Hacktivism fell to 5.4%. Malware was the leading attack technique at 42.1%, and Multiple Organizations were the most targeted at 17.7%.

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • Image by wastedgeneration from Pixabay1-15 December 2023 Cyber Attacks Timeline

    In early December 2023, event recordings decreased significantly to 135, with ransomware dominating 35.5% of incidents. The period saw a notable data breach at ESO Solutions, affecting 2.7 million patients, and a $2.7 million crypto theft at OKX. Geopolitical tensions spurred active cyber espionage, with ...

  • 2022 Cyber Attacks Statistics

    And finally I have aggregated all the data collected in 2022 from the cyber attacks timelines. In the past year I have collected 3074 events...

FOLLOW ME ON TWITTER
CLOUD NATIVE THREATS IN 2022 INFOGRAPHIC
Cloud Native Threats in 2022 Infographic

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.