EVENTS
0
EVENTS/DAY
0
EVENTS
0
EVENTS/DAY
0

After the cyber attacks timelines (part I and part II), it’s time to publish the statistics of June 2023 where I have collected and analyzed 384 events, yet another record number driven, once again, by the exploitation at scale of the CVE-2023-34362 MOVEit vulnerability by the Clop (AKA Cl0p) ransomware syndicate. Supply chain attacks, most of all if caused by the exploitation of 0-days, is getting worse month after after month.

Cyber Crime led the Motivations chart and its percentage is back to values higher than 80% (83.3%) and six points high than June and May (respectively 77.1% and 78.51%). Operations driven by Cyebr Crime are also overwhelming those driven by Cyber Espionage that continue to decrease and in July were the 8.3% of the total, down for two months in a row from 9% in June, and 9.25% in May. Hacktivism dropped to 2.3% from, while after growing for few months, Cyber Warfare plummeted to 1.6% from 5.9% in June and 4.18% in May.

And unsurprisingly the Attack Techniques is led for the second time in a row by vulnerabilities driven by the exploitation en masse of the MOVEit vulnerability vulnerabilities and soaring at the first place with 41.7% from 22.7%, once again ahead of malware up to 28.1% from 24.6% (but once again you should take into consideration that the exploitation of vulnerabilities normally ends up with the installation of malware.) The third place among the known techniques is taken by Account Takeovers with 12% up from 5.9% of June.

After the June break, the Target Distribution is led agian by Multiple Organizations with 14.3%, up from 13.8%% if June, and ahead of Finance and Insurance with 13.8%. These organizations are now starting to disclose many breaches stemming from the exploitation of the MOVEit vulnerability.

Check out the interactive charts and the statistics, also available as an infographic. And as always, please support my work, sharing the content, and of course follow @paulsparrows on Twitter for the latest updates.

As always bear in mind that the sample refers exclusively to the attacks included in my timelines, available from public sources such as blogs and news sites. Obviously the sample cannot be complete, but only aims to provide an high level overview of the threat landscape.

Events/Day - July 2023

HACKMAGEDDON.COM

No Data Found

Daily Trends of Attacks - July 2023

HACKMAGEDDON.COM

No Data Found

Motivations - July 2023

HACKMAGEDDON.COM

No Data Found

Distribution of Motivations - July 2023

HACKMAGEDDON.COM

No Data Found

Attacks - July 2023

HACKMAGEDDON.COM

No Data Found

Distribution of Attacks - July 2023

HACKMAGEDDON.COM

No Data Found

Targets - July 2023

HACKMAGEDDON.COM

No Data Found

Distribution of Targets - July 2023

HACKMAGEDDON.COM

No Data Found

Breakdown of Motivations By Sector - July 2023

HACKMAGEDDON.COM

No Data Found

Breakdown of Attacks By Sector - July 2023

HACKMAGEDDON.COM

No Data Found

Geo Map - July 2023

HACKMAGEDDON.COM

No Data Found

BE NOTIFIED OF NEW BLOG POSTS: SUSCRIBE!


SUPPORT MY WORK, MAKE A DONATION!

POPULAR POSTS
  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • computer program language text1-15 February 2024 Cyber Attacks Timeline

    In the cyber attacks timeline of February H1 2024, I collected 139 events dominated by malware attacks. Ransomware and vulnerabilities also played an important role in the threat landscape.

  • Q4 2023 Featured ImageQ4 2023 Cyber Attacks Statistics

    In Q4 2023, cyber attack events decreased by 7.1% to 1029 compared to the previous quarter. Cybercrime remains the primary motive, although slightly reduced, while malware tops attack techniques, increasing from the last quarter. Multiple industries and healthcare are the most targeted sectors. These statistics ...

  • network servers on an enclosureCVEs Targeting Remote Access Technologies

    In this first quarter of 2024, threat actors have been particularly busy in exploiting vulnerabilities (0-days but also old unpatched flaws) targeting traditional remote access technologies. In this blog post I summarized the main CVEs exploited so far in 2024.

  • January 2024 Cyber Attacks Statistics

    In January 2024 I collected 288 events, with Cyber Crime continuing to lead the motivations, and ransomware leading the known attack techniques, ahead of Malware.

TWITTER TIMELINE
JUNE 2023 INFOGRAPHIC

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.