Motivations October H1 2023

No Data Found

Attack Techniques October H1 2023

No Data Found

After the decrease observed in the second timeline of September, the in the first half of October 2023 the number of recorded events returned to go grow to a value close to the ones of June 2023, when the effects of the MOVEit CVE-2023-34362 vulnerability. started to emerge. More in detail, in the first half of October I collected 185 events, corresponding to 12,83 events/day, a 7.6% increase from 172 of the previous fortnight (11.47 events/day).

Ransomware continued to characterize the threat landscape, and consequently malware attacks led the chart of the attack techniques with 34.1% (63 out of 185 events), very close to 34.3% of the previous timeline. On the other hand, the impact of vulnerabilities was 15.1%, exactly the same number recorded in the preceding fortnight.

Cyber attack against organizations operating in the fintech space showed an apparent break (if we can use this term) with “just” to two remarkable operations against Stars Arena (more than $1 million worth of crypto assets stolen,) and Gaixe (nearly $500,000 worth stolen.)

An apparent good news is that for the first time in a long time, no mega breaches occurred, however, threat actors driven by cyber espionage were quite active even in the first half of October with multiple operations carried out by known attackers such as APT27, APT41, and Sandworm, but also new threat actors such as Grayling. And obviously the war in the Middle East also influenced the cyber espionage landscape with the discovery of a campaign carried out by a Gaza-based threat actor tracked as Storm-1133.

But obviously the war in Middle East was also the trigger for multiple operations carried out by Hacktivists on both sides (including some well-known actors such as Killnet and Anonymous Sudan,) with Israel being targeted by multiple attacks.

Of course, my suggestion is always the same: browse the timeline, and obviously share it to support my work in spreading the risk awareness across the community. And don’t forget to follow @paulsparrows on Twitter, or even connect on Linkedin, or Mastodon for the latest updates.

Geo Map September H2 2023

No Data Found



Creating the timelines is a very time-consuming task.

Any little helps!


No Data Found

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.


No Data Found

  • Photo by Towfiqu barbhuiya on UnsplashThe Biggest Data Breaches of 2023

    Similarly to what I have done in 2022 and 2021, I am collecting the main mega breaches...

  • Image by wastedgeneration from Pixabay1-15 December 2023 Cyber Attacks Timeline

    In early December 2023, event recordings decreased significantly to 135, with ransomware dominating 35.5% of incidents. The period saw a notable data breach at ESO Solutions, affecting 2.7 million patients, and a $2.7 million crypto theft at OKX. Geopolitical tensions spurred active cyber espionage, with ...

  • November 2023 MotivationsNovember 2023 Cyber Attacks Statistics

    November 2023 saw a rise to 39 events, with Cyber Crime remaining dominant at 78.7%. Cyber Espionage increased to 9.7%, while Hacktivism fell to 5.4%. Malware was the leading attack technique at 42.1%, and Multiple Organizations were the most targeted at 17.7%.

  • Q1 2023 Cyber Attacks Statistics

    I have aggregated the statistics created from the cyber attacks timelines published in the first three months of 2023. In total...

  • The Biggest Data Breaches of 2021

    With this new project I am going to track the biggest data breaches of 2021 extracted from my cyber attack timelines.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.