Motivations June H2 2023

No Data Found

Attack Techniques June H2 2023

No Data Found

In the second half of June 2023, I collected 178 events (corresponding to 11.87 events/day), a result in line with the first timeline of June, when there were 177 events for a daily average of 11.80.

And unsurprisingly, even this timeline was characterized by the massive exploitation of the CVE-2023-34362 MOVEit vulnerability by the Clop (AKA Cl0p) ransomware syndicate, leading to a spike on the percentage of attacks carried out exploiting vulnerabilities, with the new unprecedented value of 29.8% (53 out of 178 events) that beats the previous record of 28.4% tracked during the first half of June. The other obvious consequence was the increase of the percentage of events directly or indirectly characterized by ransomware, soaring to 40.3% (72 out of 178 events) from 34.3% of the previous timeline.

The good news is that, apparently for this fortnight, the fintech sector did not suffer massive breaches, with the partial exception of an undisclosed cryptocurrency exchange in Japan that was targeted by a threat actor dubbed REF9134 through the MacOS JokerSpy backdoor.

There were two mega breaches during this fortnight, and unsurprisingly one of them (the one affecting PBI Research Services) was due to the massive exploitation campaign carried out by the Cl0p ransomware gang exploiting the CVE-2023-34362 MOVEit vulnerability. The other breach affected an undisclosed Italian airport that suffered the leak of 7.8 million records.

The Cyber Espionage front was always hot, with multiple campaigns unearthed and carried out by known threat actors such as APT15, APT28, APT29, APT37, Mustang Panda, and the Lazarus Group, just to mention a few.

And as always, this brief summary is closed by a quick mention to the attacks launched by hacktivists: the pro-Russian threat actors of NoName057(16) targeted several government websites in Sweden, and their companions from Anonymous Sudan took down some targets in the U.S.

My suggestion is always the same: browse the timeline, and obviously thanks for sharing it and supporting my work in spreading the risk awareness across the community. As always, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Geo Map June H2 2023

No Data Found



Creating the timelines is a very time-consuming task.

Any little helps!


No Data Found

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.


No Data Found

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • November 2023 MotivationsNovember 2023 Cyber Attacks Statistics

    November 2023 saw a rise to 39 events, with Cyber Crime remaining dominant at 78.7%. Cyber Espionage increased to 9.7%, while Hacktivism fell to 5.4%. Malware was the leading attack technique at 42.1%, and Multiple Organizations were the most targeted at 17.7%.

  • Image by Pete Linforth from Pixabay1-15 May 2023 Cyber Attacks Timeline

    In the first half of May 2023 I collected 173 events (corresponding to 11.53 events/day), a value that confirms the sustained trend characterizing this year from an information security perspective.

  • The Biggest Data Breaches of 2021

    With this new project I am going to track the biggest data breaches of 2021 extracted from my cyber attack timelines.

  • Image by wastedgeneration from Pixabay1-15 December 2023 Cyber Attacks Timeline

    In early December 2023, event recordings decreased significantly to 135, with ransomware dominating 35.5% of incidents. The period saw a notable data breach at ESO Solutions, affecting 2.7 million patients, and a $2.7 million crypto theft at OKX. Geopolitical tensions spurred active cyber espionage, with ...


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.