EVENTS
0
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY

Motivations July H2 2023

No Data Found

Attack Techniques July H2 2023

No Data Found

New victims of attacks carried out by the Clop (AKA Cl0p) ransomware gang exploiting the CVE-2023-34362 MOVEit vulnerability emerged even during the second half of July 2023 (the first timeline is here). For this reason the number of collected events soared to 217 (corresponding to 13.56 events/day). A value never seen before that sets a new record.

Once again, the obvious consequence is that the attacks exploiting vulnerabilities were still on top of the attack techniques with the new record (yes each fortnight we set a new record) of 45.6% (99 out of 217 events). Nearly ten points higher than the previous one (35.9%) of the first half of July. And once again, the other obvious consequence was the increase of the percentage of events directly or indirectly characterized by ransomware, soaring to 45.16%, slightly lower than 45.5% of the previous fortnight.

The fintech sector continued to be under pressure with multiple companies suffering the theft of crypto assets for millions of U.S. Dollars worth, and in particular two suffered a loss higher than 60million: Alphapo (and in this case the fingers are pointed to the North Korean threat actor Lazarus Group), and Curve Finance.

In terms of mega breaches, Tampa General Hospital disclosed that the sensitive data of 1.2 million was stolen in a failed ransomware attack, a threat actor claimed to be in possession of two million data records stolen from the Egyptian Ministry of Health and Population, and the U.S. government contractor Maximus confirmed that the Clop Ransomware gang, accessed the protected health information of as many as 11 million individuals exploiting the vulnerability in MOVEit Transfer.

The Cyber Espionage front was quite crowded even in this fortnight, with multiple high-profile campaigns unearthed and carried out by known threat actors such as APT29 and Turla (against organization with connections to Ukraine), the Chinese APT31, APT41, the Iranian APT 34, and the Indian Bahamut (but there are many more).

In terms of hacktivism: NATO confirmed an investigations on the claims about an alleged data-theft hack on the Communities of Interest (COI) Cooperation Portal by the hacking group known as SiegedSec, Anonymous Sudan took down the Kenya’s eCitizen Portal, and an Iranian group dubbed Cyber Avengers took down Israel’s largest oil refinery operator, BAZAN Group.

My suggestion is always the same: browse the timeline, and obviously thanks for sharing it and supporting my work in spreading the risk awareness across the community. As always, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Geo Map July H2 2023

No Data Found

BE NOTIFIED OF NEW POSTS

SUPPORT MY WORK!
MAKE A DONATION

Creating the timelines is a very time-consuming task.

Any little helps!

BREACHOMETER

No Data Found

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.

12 MONTHS TREND

No Data Found

POPULAR POSTS
  • September 2023 Cyber Attacks Statistics

    In September 2023, cyber crime continued to lead with 77.1% of total events, but showed a decrease. Cyber Espionage grew to 11.6%, while Hacktivism significantly dropped. Malware remains the leading attack technique and multiple organizations are the top targets.

  • August 2023 Cyber Attacks Statistics

    After the cyber attacks timelines (part I and part II), it’s time to publish the statistics of August 2023 where I have collected and analyzed 336 events, a number relatively...

  • Image by noCap XL from Pixabay16-30 September 2023 Cyber Attacks Timeline

    The second cyber attack timeline of September 2023 showed a decrease in events and a continuation of malware attacks. Massive hacks targeted fintech organizations like Mixin Network, and some breaches affected millions of individuals. The timeline also includes activities by various known and new threat ...

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • The Biggest Data Breaches of 2021

    With this new project I am going to track the biggest data breaches of 2021 extracted from my cyber attack timelines.

TWITTER

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.