July 2023 Cyber Attacks Statistics

After the cyber attacks timelines (part I and part II), it’s time to publish the statistics of June 2023 where I have collected and analyzed 384 events, yet another record number driven, once again, by the exploitation at scale of the CVE-2023-34362 MOVEit vulnerability by the Clop (AKA Cl0p) ransomware syndicate. Supply chain attacks, most of all if caused by the exploitation of 0-days, is getting worse month after after month.

Cyber Crime led the Motivations chart and its percentage is back to values higher than 80% (83.3%) and six points high than June and May (respectively 77.1% and 78.51%). Operations driven by Cyebr Crime are also overwhelming those driven by Cyber Espionage that continue to decrease and in July were the 8.3% of the total, down for two months in a row from 9% in June, and 9.25% in May. Hacktivism dropped to 2.3% from, while after growing for few months, Cyber Warfare plummeted to 1.6% from 5.9% in June and 4.18% in May.

And unsurprisingly the Attack Techniques is led for the second time in a row by vulnerabilities driven by the exploitation en masse of the MOVEit vulnerability vulnerabilities and soaring at the first place with 41.7% from 22.7%, once again ahead of malware up to 28.1% from 24.6% (but once again you should take into consideration that the exploitation of vulnerabilities normally ends up with the installation of malware.) The third place among the known techniques is taken by Account Takeovers with 12% up from 5.9% of June.

After the June break, the Target Distribution is led agian by Multiple Organizations with 14.3%, up from 13.8%% if June, and ahead of Finance and Insurance with 13.8%. These organizations are now starting to disclose many breaches stemming from the exploitation of the MOVEit vulnerability.

Check out the interactive charts and the statistics, also available as an infographic. And as always, please support my work, sharing the content, and of course follow @paulsparrows on Twitter for the latest updates.