Motivations August H1 2023

No Data Found

Attack Techniques August H1 2023

No Data Found

In the first timeline of August, I collected 169 events (corresponding to 11.27 events per day), a considerable decrease compared to the the second half of July (217 events, that is 13.56 events per day) but equally a value well above the thresholds of the pre-MOVEit age. Despite new victims of attacks carried out by the Clop (AKA Cl0p) ransomware gang exploiting the CVE-2023-34362 MOVEit vulnerability continued to emerge, the trail of disclosures seems to have taken a decreasing trend.

And after one month, attacks carried out via malware took again the lead of the motivations with 36.1% (64 out of 169), whereas vulnerabilities, despite still at an important percentage, slid immediately behind with 21.9%. By coincidence, ransomware was directly or indirectly involved in 36.1% of the attacks as well.

The fintech sector continued to be under pressure even in this fortnight with several companies  suffering the theft of crypto assets for millions of dollars worth, and in particular the Zunami Protocol lost the equivalent of $2.1 million worth. Also individuals operating in the crypto space were the targets of multiple campaigns.

The multiple attacks carried out exploiting the MOVEit breach continued to affect also the mega breaches landscape. For example IBM Consulting was hit in the hacking spree as well, and the Colorado Department of Health Care Policy & Financing (HCPF) alerted more than four million individuals that their personal and health information had been compromised. Same fate for the Missouri’s Department of Social Services (six million records potentially involved), whilst, nearly 1.5 million records were stolen from Alberta Dental Service Corporation (ADSC) by the 8Base ransomware gang.

In terms of Cyber Espionage, the Russian state-sponsored threat actors from APT29 were quite busy in this period, exploiting the MS Teams flaw to launch attacks against multiple organizations worldwide, and attacking Foreign ministries of NATO-aligned governments. The Sandworm group continued their activity against Ukraine, while several Chinese groups targeted multiple organizations including a classified military network in Japan. Other remarkable events include an operations launched by the North Korean threat group
ScarCruft against the IT infrastructure and email server for NPO Mashinostroyeniya, a Russian space rocket designer, an operation carried out by the Iranian Charming Kittnen against Iranian opposition and exiles based in Germany and a new actor dubbed MoustachedBouncer against Foreign embassies in Belarus.

In terms of hacktivism: the pro-Russia hacktivists from NoName057(16) were particularly active against targets in Italy, France, Spain, and the Netherlands, all countries aligned to Ukraine. Other pro-Russia hacktivists from the Killnet group claimed to have targeted the London Metal Exchange (LME) and the ones from Anonymous Sudan hit the Nigerian mobile telecommunication company, MTN.

My suggestion is always the same: browse the timeline, and obviously thanks for sharing it and supporting my work in spreading the risk awareness across the community. As always, don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, for the latest updates.

Geo Map August H1 2023

No Data Found



Creating the timelines is a very time-consuming task.

Any little helps!


No Data Found

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.


No Data Found

  • Q3 2023 Cyber Attacks StatisticsQ3 2023 Cyber Attacks Statistics

    The third quarter of 2023 saw a 6.5% increase in cyber attacks with 1,108 events. Cybercrime led the charts with 79.7% of motives, mostly using malware techniques. Exploitation of vulnerabilities ranked second, majorly affecting multiple industries and healthcare and financial sectors.

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • Q4 2022 Cyber Attacks Statistics

    I have aggregated the statistics created from the cyber attacks timelines published during Q4 2022) In total I collected...

  • September 2023 Cyber Attacks Statistics

    In September 2023, cyber crime continued to lead with 77.1% of total events, but showed a decrease. Cyber Espionage grew to 11.6%, while Hacktivism significantly dropped. Malware remains the leading attack technique and multiple organizations are the top targets.

  • 2020 Cyber Attacks Statistics

    As promised, I have pulled together some statistics from the data collected in 2020. The master table is available at the end of the post after the charts.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.