Motivations September H1 2023

No Data Found

Attack Techniques September H1 2023

No Data Found

The first cyber attack timeline of September 2023 brings with it a new record in terms of events per day (13.93) abruptly inverting the apparent break and the decreasing trend of the past two fortnights (11.40 and 10.69 respectively in the first and second week of August).

Ransomware continues to be a big issue, and as a consequence, malware attacks continue to dominate the threat landscape with 39.7% (83 out of 209 events) up from 34.5% of the previous timeline. The impact of vulnerabilities is equally quite important (17.2% the echoes of the massive MOVEit attack are not over yet), despite the percentage seems to be headed to a decreasing trend (it was 22.6% in the second half of August). Ransomware was directly or indirectly involved in 38.65% of events (80 out of 209),  an important increase compared to 31.6% of the previous timeline.

The fintech continues to be under pressure, most of all because of the continued operations of the North Korean Lazarus Group, who allegedly hit CoinEX ($53 million worth of crypto assets stolen) and (over $40 million in crypto reportedly stolen.) Additionally a cyber attack to the cloud provider Retool cost a lot to Fortress Trust, which lost close to $15 million as a consequence of the hack.

Instead the list of the organizations victims of mega breaches include Freecycle (7 million records), Pizza Hut Australia (more than one million) and Traderie (2.6 million.)

Threat actors driven by cyber espionage were equally quite active in this fortnight with multiple operations carried out by attackers originating from China, Russia, Iran, an North Korea; known threat groups such as APT28, Charming Kitten, Winnti Group, or APT33, but also previously undisclosed state-sponsored groups.

In terms of hacktivism: the pro-Russia hacktivists from Anonymous Sudan and NoName057(16) were particularly active against targets, with the first claiming to have taken down Telegram for in retaliation for the decision of suspending their account.

Of course, my final suggestion is always the same: browse the timeline, and obviously share it to support my work in spreading the risk awareness across the community.

And don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, or Mastodon for the latest updates.

Geo Map September H1 2023

No Data Found



Creating the timelines is a very time-consuming task.

Any little helps!


No Data Found

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.


No Data Found

  • photo of turned on laptop computer1-15 April 2024 Cyber Attacks Timeline

    In the first timeline of April 2024 I collected 107 events (7.13 events/day), as always characterized by a majority of malware attacks.

  • Featured Image Q1 2024Q1 2024 Cyber Attacks Statistics

    I aggregated the statistics created from the cyber attacks timelines published in the first quarter of 2024. In this period, I collected a total of 833 events (9.15 events/day) dominated by Cyber Crime with 75.2%...

  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • network servers on an enclosureCVEs Targeting Remote Access Technologies

    In this first quarter of 2024, threat actors have been particularly busy in exploiting vulnerabilities (0-days but also old unpatched flaws) targeting traditional remote access technologies. In this blog post I summarized the main CVEs exploited so far in 2024.

  • Image by Panumas Nikhomkhai from Pixabay1-15 June 2023 Cyber Attacks Timeline

    In the first half of June 2023, I collected 172 events (corresponding to 11.47 events/day), a value that shows...


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.