Motivations January H2 2023

No Data Found

Attack Techniques January H2 2023

No Data Found

In the second timeline of January 2024 I collected 168 events (10.50 events/day), an important increase compared to the previous one.

Unsurprisingly ransomware dominated the threat landscape during January H2 2024, with 17.9%, ahead of malware (16.1%) and the exploitation of vulnerabilities (11.9%) fueled by the ongoing exploitation of multiple flaws on Ivanti products. It looks like the wave of crypto scams took a break, with account takeovers sliding at place number four with 8.3%.

The trend of mega breaches continued also in the second half of the month, with the discovery of the Naz.API dataset, containing 71 million email addresses from 1 billion credentials, a staggering leak in India containing the information of roughly 750 million mobile subscribers, and multiple breaches affecting several organizations in Taiwan.

Same story for the fintech sectors, with Chris Larsen (Ripple’s co-founder and executive) loosing $112 million worth, but also the blockchain protocol Socket pausing the operations after the theft of $3.3 million, and Somesing, a blockchain-based social karaoke platform in South Korea, suffering an exploit leading to the theft of $11.58 million.

In terms of cyber espionage, the Russian threat actor APT29 (a.k.a. Midnight Blizzard, Cozy Bear, and Nobelium) was quite busy, targeting the cloud accounts of Microsoft, HPE, and multiple other organizations worldwide). Other active groups in this period include the Iranian Mint Sandstorm, the Russian APT28, the Korean ScarCruft and the Chinese Mustang Panda and Stone Panda.

Moving to cyber warfare, Ukraine was targeted by multiple DDoS campaigns targeting organizations operating in different sectors, while in terms of hacktivism, the few operations of this fortnight targeted several Swiss government websites, following Ukrainian President Volodymyr Zelensky’s visit to Davos, a Russian space center, and a movie theater in Israel, whose display panels were hijacked.

As always, my suggestion is always the same: browse the timeline, and obviously share it to support my work in spreading the risk awareness across the community. And don’t forget to follow @paulsparrows on X (formerly Twitter,) or even connect on Linkedin, or Mastodon for the latest updates.

Geo Map January H1 2023

No Data Found



Creating the timelines is a very time-consuming task.

Any little helps!


No Data Found

The “Breachometer” compares the current number of events/day with the max and min values recorded in the previous 12 months.


No Data Found

  • Featured Image Q1 2024Q1 2024 Cyber Attacks Statistics

    I aggregated the statistics created from the cyber attacks timelines published in the first quarter of 2024. In this period, I collected a total of 833 events (9.15 events/day) dominated by Cyber Crime with 75.2%...

  • The Biggest Data Breaches of 2021

    With this new project I am going to track the biggest data breaches of 2021 extracted from my cyber attack timelines.

  • 2023 Stats Featrured Image2024 Cyber Attacks Statistics

    In 2023, there was a 35% increase in cyber attacks to 4,128 events, with the MOVEit CVE-2023-34362 vulnerability being heavily exploited. Cybercrime dominated as the main motivation at 79%, while malware led attack techniques with 35.9%. Healthcare remained a top target for ransomware. The data ...

  • 2021 Cyber Attacks Statistics

    And finally I have aggregated all the data collected in 2021 from the cyber attacks timelines. In the past year I have collected 2539 events, meaning...

  • Q3 2023 Cyber Attacks StatisticsQ3 2023 Cyber Attacks Statistics

    The third quarter of 2023 saw a 6.5% increase in cyber attacks with 1,108 events. Cybercrime led the charts with 79.7% of motives, mostly using malware techniques. Exploitation of vulnerabilities ranked second, majorly affecting multiple industries and healthcare and financial sectors.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.