EVENTS
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY
0

Attack Distribution March H1 2023

No Data Found

Attack Techniques March H1 2023

No Data Found

In the first cyber attacks timeline of March 2023 I collected 152 events (10.13 events/day), a number that, unsurprisingly, confirms the high level of activity that is accompanying us over the course of this 2023.

Ransomware-driven events slide at 21.7% from 24.6% (33 out of 152 events), whilst 19 events were characterized by the exploitation of vulnerabilities (corresponding to 12.5% vs 8% of the previous timeline), an increase mainly due to the ongoing exploitation of the CVE-2023-0669 Fortra GoAnywhere MFT Vulnerability.

Free cyber security concept background

1-15 March 2024 Cyber Attacks Timeline

In the first timeline of March 2024, I collected 98 events, once again characterized malware and ransomware attacks. State-sponsored threat actor were equally quite active, but the timeline also features some interesting events related to cyberwarfare.

Continue Reading

Multi-million losses continued to affect the fintech sector, with Euler Finance suffering a flash loan attack leading to the theft of $197 million worth in multiple digital assets. Other fintech organizations targeted in the same period included Algodex and Poolz Finance.

And the season of the mega breaches has just begun apparently: victims in this fortnight included: HDB Financial Services (72 million records affected), an undisclosed marketing vendor working for AT&T and other organizations (9 million records affected), Independent Living Systems (around 4 million records), and Zoll Medical (one million). Other high-profile victims included ACER that suffered the leak of 160 Gb.

The Cyber Espionage front is always hot, with multiple campaigns unearthed in the first half of March, and carried out by known threat actors such as: APT27, APT28, APT29, Mustang Panda, Sharp Panda, the Tick, and Transparent Tribe, but also new players, such as UNC2970, UNC4540, and Yoro Trooper. The Iranian group Cobalt Illusion also launched a campaign against female human rights activists.

And as always, this brief summary is closed by a quick mention to the DDos attacks launched by the pro-Russian hacktivists of NoName057(16) that were directed against several government websites in Poland and Italy.

My suggestion is always the same: browse the timeline, and obviously thanks for sharing it and supporting my work in spreading the risk awareness across the community. As always, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Geo Map March H2 2023

No Data Found

SUPPORT MY WORK!
BREACHOMETER

No Data Found

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

12 MONTHS TREND

No Data Found

POPULAR POSTS
  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • February 2024 Statistics Featured ImageFebruary 2024 Cyber Attacks Statistics

    In February 2024 I collected and analyzed 239 events. Cyber Crime continued to lead the Motivations chart with 68.6%. Operations driven by Cyber Espionage ranked at number two with 16.7%, ahead of Cyber Warfare (4.6%) and Hacktivism (3.3%).

  • Free cyber security concept background1-15 March 2024 Cyber Attacks Timeline

    In the first timeline of March 2024, I collected 98 events, once again characterized malware and ransomware attacks. State-sponsored threat actor were equally quite active, but the timeline also features some interesting events related to cyberwarfare.

  • network servers on an enclosureCVEs Targeting Remote Access Technologies

    In this first quarter of 2024, threat actors have been particularly busy in exploiting vulnerabilities (0-days but also old unpatched flaws) targeting traditional remote access technologies. In this blog post I summarized the main CVEs exploited so far in 2024.

  • The Biggest Data Breaches of 2021

    With this new project I am going to track the biggest data breaches of 2021 extracted from my cyber attack timelines.

FOLLOW ME ON TWITTER

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.