Category Archives: Security

North Korean Cyber Capabilities Could Soon Cause Physical Damages

In an exclusive interview to BBC, a key defector of the North Korean regime, Prof Kim Heung-Kwang, has given an updated overview of Pyongyang cyber capabilities.

He has taught computer science at Hamheung Computer Technology University for 20 years before escaping the country in 2004, and despite he did not teach directly hacking techniques, his former students are believed to have formed North Korea’s infamous hacking unit Bureau 121, a cyberwarfare agency.

read more

Worldwide Security Software Market Reached $21.4 Billion in 2014

Worldwide security software revenue totaled $21.4 billion in 2014, showing a 5.3 percent increase from 2013 revenue of $20.3 billion, according to Gartner report “Market Share Analysis: Security Software, Worldwide, 2014.”

Traditional technologies keep on struggling: the report outlines a slow growth of endpoint protection platforms and a decline in consumer security software  (two segment that together account for 39 percent of the market).

read more

New Web Site and Updated Page for the 2015 Master Index

I just completed the migration of my blog to a new platform, and took this opportunity to update the 2015 Cyber Attack Master Index with the 2015 Cyber Attacks Master Index.

You can find there all the timelines on a single place, hoping I will be able to update it in a timely manner. Unfortunately, this year is quite troubled from an Infosec perspective, and I am struggling to keep up and maintain the target to publish the timelines every two weeks.

read more

1-15 May 2015 Cyber Attacks Timeline

It’s time for the first timeline of May, reporting the main cyber attacks occurred between 1 and 15 May 2015.

The Summer is at the gates, but apparently the nice weather is not stopping the attackers from their intentions: I have recorded 52 attacks, a dramatic turnaround in comparison with April, and a strong indication that the slowing trend of the past couple of months has suffered a sudden stop.

read more

April 2015 Cyber Attacks Statistics

Country DistributionEven if I am little late, I can finally publish the statistics derived from cyber attacks timelines of April (Part I and Part II).

Something new happened in the Country Distribution chart. I am not obviously referring to the large red circle labeled US (a consolidated trend that is far to be overturned), but rather to Israel which, for the first time, ranks on top of the countries hit by attacks motivated by hacktivism. Clearly a consequence of the multiple actions perpetrated against this country in name of the so-called “OpIsrael” (even if, in reality, the damages inflicted were not so relevant).

read more

16-30 April 2015 Cyber Attacks Timeline

It’ s time to publish the timeline with the main cyber attacks occurred in April 2015 (Part I here).

Despite the number of attacks has shown a decreasing trend, this second part of April will be probably remembered for the Cyber Espionage campaigns, which, in a couple of cases, have successfully hit the White House, a coveted target for Russian hackers. Other remarkable events in this space include the return of APT 28 (Operation Russian Doll) and an operation carried on by Arabic-speaking attackers, targeting Israeli military networks.

read more

1-15 April 2015 Cyber Attacks Timeline

Spring is sprung, but unfortunately the nice season is not enough to keep the crooks’ hands off their keyboard, as the growing trend continues, and this first half of April has shown a sustained number of attacks.

The most illustrious victim is Lufthansa, whose frequent-flyers website has been hacked, with the attackers able to harvest miles from the unaware victims. Other noticeable events, always related to cyber crime, include the compromise of Linux Australia, and the discovery of Operation Buhtrap, a campaign targeting Russian banks.

read more

March 2015 Cyber Attacks Statistics

Country DistributionIt’s time to aggregate the two Cyber Attack Timelines for March 2015 (Part I and Part II) into statistics.

As always, let’s start from the Country Distribution chart, which, similarly to March, sees the United States on top, followed by the United Kingdom and Australia.

read more

16-31 March 2015 Cyber Attacks Timeline

I am back in business after a short vacation period (now and then it happens!), just in time to publish the second Cyber Attack timeline of March (the first one is here), which confirms the growing trend we have been experiencing in 2015.

Two weeks packed with events, started in the worst possible way, with the massive cyber attack against Premera Blue Cross (11 million customers affected), and continued with the same baffling trend, since the list of organizations targeted by massive breaches, includes other primary companies such as British Airways, Slack and Twitch (an Amazon-owned game video streaming service).

read more

1-15 March 2015 Cyber Attacks Timeline

Spring is at the door, and finally the endless winter is coming to an end. I am just wondering if the crooks are starting to enjoy the first rays of sun, given the relatively low level of attacks in the first half of March.

Effectively, for the first time since several months, no massive breaches have been recorded. But don’t get carried away: the second half of March has begun in the worst possible way with the gigantic breach suffered by Premera (definitely a deja vu).

read more