With the release of the timelines of May (and the corresponding statistics) I was finally able to align the 2013 Cyber Attacks Master Index (yes it was still “frozen” on January). Now it is updated to the latest timeline and will be correspondingly aligned bi-weekly at the release of new list of Cyber Attacks.

I still miss to complete the 2013 section for the statistics, but is only a matter of few hours. Stay tuned (and keep on sharing!).

Link to the 2013 Cyber Attacks Master Index:

http://hackmageddon.com/2013-cyber-attacks-timeline-master-index/

The Daily Trend of Attacks chart shows a month double-faced. After an initial peak, the first two weeks have shown a quite low activity. The second half of the month instead has shown a revamping of the activity.

The Motivations Behind Attacks chart is maybe the most interesting thing for this month: Cyber Crime has overtaken Hacktivism at the top of the chart, but most of all, the chronicles of this month have shed light on many noticeable attacks motivated by Cyber Espionage (most of all the infiltration against Qinetiq and the compromising of most sensitive U.S. advanced weapons systems). The Cyber War between Taiwan and Philippines also influenced the chart.

The Distribution of Attack Techniques assigns to the SQL injection the crown of the most used weapon for the month of May. DDoS is “only” at the third place with the half of occurrences. It is interesting to notice the high rate of attacks made by mean of account hijacking, at number four with the 12% of occurrences. a clear consequence of the long trail of high-profile attacks perpetrated by the Syrian Electronic Army.

In comparison with the previous months, the Distribution of Attacks Chart “misses” the influence of the DDoS attacks against the U.S. Banks. Industrial targets lead the chart, followed at close distance by Governmental targets. Victims belonging to Organizations rank at number three at a greater distance.

As usual, please bear in mind that the sample must be taken very carefully since it refers only to discovered attacks included in my timelines. The sample does not pretend to be exhaustive but only aims to provide an high level overview of the “cyber landscape”.

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Related articles

• 15-31 May 2013 Cyber Attacks Timeline (hackmageddon.com)
• 1-15 May 2013 Cyber Attacks Timeline (hackmageddon.com)
• April 2013 Cyber Attacks Statistics (hackmageddon.com)

The second half of the month has shown an unusual activity with several high-profile breaches motivated by Cyber-Crime or Hacktivism, but also with the disclosure of massive Cyber-Espionage operations.

The unwelcome prize for the “Breach of the Month” is for Yahoo! Japan, that suffered the possible compromising of 22 million users (but in general this was an hard month for the Far East considering that also Groupon Taiwan suffered an illegitimate attempt to access the data of its 4.1 million of customers).

On the cyber-espionage front, the leading role is for the Chinese cyber army, accused of compromising the secret plans of advanced weapons systems from the U.S. and the secret plans for the new headquarter of the Australian Security Intelligence Organization.

On the Hacktivism front, this month has been particularly troubled for the South African Police, whose web site has been hacked with the compromising of 16,000 individuals, including 15,700 whistle-bowlers.

Other noticeable events include the unauthorized access against the well known open source CMS Drupal (causing the reset of 1 million of passwords), the trail of hijacked Twitter accounts by the Syrian Electronic Army and also an unprecedented wave of attacks against targets belonging to Automotive.

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

1. http://www.thesmokinggun.com/buster/carl-bernstein-guccifer-hack-578632

2. http://hackread.com/opliberation-thayer-learning-center-breached-surveillance-logs-exposed-by-anonymous/

3. http://krebsonsecurity.com/2013/05/nc-fuel-distributor-hit-by-800000-cyberheist/

4. http://www.enca.com/south-africa/thousands-vulnerable-after-saps-website-hijacked

5. http://hackread.com/nbc-the-voice-casting-website-hacked-login-accounts-leaked-by-remnant/

6. http://www.ehackingnews.com/2013/05/opsaudi-anonymous-launched-cyber-attack.html

7. http://arstechnica.com/security/2013/05/mac-malware-signed-with-apple-id-infects-activists-laptop/

8. http://uk.reuters.com/article/2013/05/17/uk-britain-ft-hacked-idUKBRE94G0DC20130517

9. http://www.wmur.com/news/national/New-issue-of-al-Qaeda-magazine-hacked/-/9857926/20183104/-/4hwrry/-/index.html

10. http://www.japantimes.co.jp/news/2013/05/18/national/yahoo-japan-suspects-vast-id-theft/#.UaGx_5xz4et

11. http://www.cyberwarnews.info/2013/05/19/lomonosov-moscow-state-university-hacked-accounts-leaked-by-1923turkz/

12. http://www.cyberwarnews.info/2013/05/19/sports-federation-olympic-committee-of-hong-kong-china-hacked-personal-data-leaked/

13. http://www.cyberwarnews.info/2013/05/19/mopar-parts-hacked-account-data-leaked-by-ag3nt47/

14. http://www.cyberwarnews.info/2013/05/19/imperial-college-london-hacked-accounts-leaked-by-1923turkz/

15. http://www.cyberwarnews.info/2013/05/20/official-toyota-uk-blog-hacked-personal-information-leaked-by-1923turkz/

16. http://www.theinquirer.net/inquirer/news/2269451/hacker-claims-successful-attack-on-cnn

17. http://hackread.com/saudi-arabian-defense-ministry-mail-system-breached-secret-emails-leaked-by-syrian-electronic-army/

18. http://blogs.norman.com/2013/security-research/the-hangover-report

19. http://www.cyberwarnews.info/2013/05/20/bangladeshi-air-force-recruitment-site-hacked-accounts-leaked-by-1923turkz/

20. http://www.sea.sy/article.php?id=1962&lang=en

21. http://www.cyberwarnews.info/2013/05/22/federal-university-of-bahia-hacked-accounts-leaked-by-1923turkz/

22. http://blog.vendini.com/2013/05/statement-from-vendini-regarding.html

23. http://www.theregister.co.uk/2013/05/23/us_power_grid_cyber_attack_report/

24. http://www.cyberwarnews.info/2013/05/23/automotive-giant-audi-hacked-2000-account-credentials-leaked-by-xc0unt3r/

25. http://www.cyberwarnews.info/2013/05/22/lookitsme-breached-4294-accounts-leaked-from-300000-by-st0rmyw0rm/

26. http://www.cyberwarnews.info/2013/05/23/th3j35t3r-takes-on-westboro-for-godhatesoklahoma-com/

27. http://online.wsj.com/article/SB10001424127887323336104578501601108021968.html?mod=googlenews_wsj

28. http://www.guardian.co.uk/business/2013/may/23/enrc-data-loss-hacking-stolen-laptop

29. http://www.cyberwarnews.info/2013/05/23/honda-belarus-breached-accounts-and-data-leaked-by-ag3nt47/

30. http://www.cyberwarnews.info/2013/05/24/pakistan-intelligence-hacked-over-70000-personal-details-leaked-by-g3ntbl4ck/

31. http://www.huffingtonpost.com/2013/05/25/israel-syria-cyber-attack_n_3336670.html?utm_hp_ref=technology&ir=Technology

32. http://grahamcluley.com/2013/05/itv-london-hacked-on-twitter-syrian-electronic-army-strikes-again/

33. http://www.cyberwarnews.info/2013/05/25/akron-canton-airport-hacked-data-leaked-left-defaced-by-turkish-ajan/

34. http://www.cyberwarnews.info/2013/05/26/monsanto-uk-hacked-data-leaked-by-ag3nt47/

35. http://news.cnet.com/8301-1009_3-57586245-83/skys-android-apps-twitter-account-hacked/

36. http://www.cyberwarnews.info/2013/05/27/isuzu-france-hacked-data-leaked-by-pentester_1996/

37. http://www.cyberwarnews.info/2013/05/26/peugeot-canada-hacked-accounts-and-data-leaked-by-ag3nt47/

38. http://www.theage.com.au/it-pro/security-it/blueprints-for-new-asio-headquarters-stolen-20130527-2n7kz.html

39. http://www.cyberwarnews.info/2013/05/27/the-health-information-trust-alliance-hitrust-hacked-by-teamberserk/

40. http://www.hitrustalliance.net/news/index.php?a=131

41. http://news.softpedia.com/news/Twitter-Account-of-Cher-Hacked-Abused-to-Promote-Shady-Diet-356824.shtml

42. http://news.softpedia.com/news/Alec-Baldwin-s-Twitter-Account-Hijacked-Hackers-Use-It-to-Advertise-Miracle-Diets-357024.shtml

43. http://www.washingtonpost.com/world/national-security/confidential-report-lists-us-weapons-system-designs-compromised-by-chinese-cyberspies/2013/05/27/a42c3e1c-c2dd-11e2-8c3b-0b5e9247e8ca_story.html

44. http://thenextweb.com/asia/2013/05/28/groupon-taiwan-resets-user-passwords-after-hack-but-credit-card-details-not-leaked/

45. http://www.cyberwarnews.info/2013/05/28/interactive-data-hacked-data-leaked-by-teamberserk/

46. http://news.softpedia.com/news/MSN-Account-of-US-National-Intelligence-Council-Chairman-Hacked-by-Guccifer-356749.shtml

47. http://anon-news.blogspot.in/2013/05/oprevenge-optrasparenza.html

48. http://www.cyberwarnews.info/2013/05/28/ex-army-uk-military-vehicle-supplier-hacked-by-ag3nt47/

49. https://drupal.org/news/130529SecurityUpdate

50. http://www.bbc.co.uk/news/uk-22698510

51. http://www.cyberwarnews.info/2013/05/30/city-of-lansing-hacked-full-database-leaked-by-turkish-ajan/

52. http://www.cyberwarnews.info/2013/05/30/compoundsemiconductor-net-breached-by-st0rmyw0rm-credentials-leaked/

53. http://www.cyberwarnews.info/2013/05/30/parametric-technology-corporation-breached-1753-account-credentials-leaked/

54. http://www.cyberwarnews.info/2013/05/30/albany-international-airport-new-york-hacked-data-leaked-by-ag3nt47/

55. http://news.softpedia.com/news/Malawi-Domain-Registrar-Breached-by-Bangladeshi-Hackers-357189.shtml

56. http://www.cyberwarnews.info/2013/05/31/myanmar-government-sites-attacked-for-opmyanmar/

57. http://hackread.com/english-defence-league-website-hacked-and-defaced/

58. http://www.cyberwarnews.info/2013/05/31/th3j35t3r-strikes-again-sites-downed-for-distributing-inspire-magazine/

Related articles

• 1-15 May 2013 Cyber Attacks Timeline (hackmageddon.com)

Probably this month will be remembered for the huge cyber-heist against two Payment Processors, and affecting two banks (National Bank of Ras Al-Khaimah PSC in the United Arab Emirates and the Bank of Muscat in Oman), which suffered a massive loss of $45 million due to an endless wave of unlimited withdrawals from their ATMs.

Other relevant actions related to Cyber-criminal operations include the massive breaches against MSI Taiwan (50,000 records affected) and most of all, the Washington state Administrative Office of the Courts (up to 160,000 SSN and 1 million driver’s license numbers).

On the other hand, the hacktivists concentrated their efforts on the so-called OpUSA (7 May), even if it looks like that most of the attacks were nuisance-level. Instead, and this is a great news, after months of intense activity, the operation Ababil come to a stop.

On the cyber war front, this month reports an unedited conflict between Taiwan and Philippines.

Last but not least, even if this attack dates back to 2007, on the Cyber-Espionage front, Bloomberg has shaken this lazy month revealing the repeated attacks by the infamous Comment Crew hackers against Qinetiq, a very critical Defense contractor. The cyber threats from the Red Dragon (real or alleged) keep on scaring the western world.

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

1. http://hilf-ol-fozoul.blogspot.it/2013/05/the-key-bank-and-bbva-compass-have.html

2. http://hilf-ol-fozoul.blogspot.it/2013/05/the-schwab-bank-and-bbva-have-targeted.html

3. http://www.darkreading.com/attacks-breaches/us-department-of-labor-website-discovere/240153967

4. http://news.softpedia.com/news/Cybercriminals-Behind-DOL-Watering-Hole-Attack-Target-USAID-Employees-353138.shtml

5. http://freebeacon.com/the-cyber-dam-breaks/

6. http://thinkprogress.org/security/2013/05/02/1955861/iranian-election-being-fought-online/

7. http://www.bloomberg.com/news/2013-05-01/china-cyberspies-outwit-u-s-stealing-military-secrets.html

8. http://hilf-ol-fozoul.blogspot.it/2013/05/the-union-bank-has-defeated-against.html

9. http://news.softpedia.com/news/French-Defense-Ministry-s-1st-Airborne-quot-Hunter-quot-Regiment-Site-Hacked-350782.shtml

10. http://news.softpedia.com/news/Famous-Underground-Marketplace-Silk-Road-Hit-by-DDOS-Attack-350886.shtml

11. http://news.softpedia.com/news/State-of-Louisiana-Website-Hacked-Spreads-Sirefef-Malware-350944.shtml

12. http://www.cyberwarnews.info/2013/05/03/4-2-gb-of-emails-leaked-from-italian-politicians-by-anonymous/

13. http://www.cyberwarnews.info/2013/05/04/official-msi-taiwan-hacked-50000-accounts-other-data-leaked-sites-defaced/

14. http://hackread.com/opusa-honolulu-police-department-breached-login-info-of-officials-leaked-by-x-blackerz-inc

15. http://news.softpedia.com/news/E-Online-Twitter-Account-Hacked-Fake-Justin-Bieber-News-Posted-351015.shtml

16. http://www.mapcomartblog.com/wp-content/uploads/2013/05/Security_Breach_Press_Release2.pdf

17. http://www.ehackingnews.com/2013/05/istanbul-government-website-hacked-by.html

18. http://theonion.github.io/blog/2013/05/08/how-the-syrian-electronic-army-hacked-the-onion/

19. http://abcnews.go.com/Technology/wireStory/dutch-govt-main-website-attacked-19133466#.UZietspz4et

20. http://nakedsecurity.sophos.com/2013/05/09/sex-and-city-author-hacked-book-leaked-online-candace-bushnell/

21. http://nakedsecurity.sophos.com/2013/05/08/name-dot-com-suffers-breach/

22. http://www.bangkokpost.com/news/local/349043/pm-website-hacked

23. http://www.weau.com/home/headlines/BREAKING-NEWS-Hack-of-CESA-10-web-portal-reveals-faculty-passwords-206531721.html

24. http://www.justice.gov/usao/nye/pr/2013/2013may09.html

25. http://news.softpedia.com/news/Expert-Cybercriminals-Likely-Exploited-SQL-Injection-to-Pull-Off-45M-34M-Heist-352865.shtml

26. http://in.reuters.com/article/2013/05/11/usa-crime-cybercrime-india-idINDEE94A04620130511

27. http://www.business-standard.com/article/companies/atm-heist-enstage-is-2nd-indian-firm-hit-by-data-breach-113051200395_1.html

28. http://www.washingtonpost.com/national/apnewsbreak-wash-courts-hacked-up-to-1-million-drivers-license-numbers-accessed/2013/05/09/eba5d7d0-b8d3-11e2-b568-6917f6ac6d9d_story.html

29. http://www.gmanetwork.com/news/story/307840/scitech/technology/comelec-website-down-2-days-before-polls-possible-victim-of-cyberattack

30. http://news.softpedia.com/news/Romania-s-National-Authority-for-Qualifications-Hacked-User-Data-Leaked-352508.shtml

31. http://www.cyberwarnews.info/2013/05/12/city-of-mobile-police-hacked-data-leaked-by-turkish-ajan/

32. http://www.gmanetwork.com/news/story/308017/scitech/technology/2-more-taiwanese-sites-attacked-in-cyberwar-tit-for-tat

33. http://www.phiprivacy.net/?p=12633

34. http://news.softpedia.com/news/Taiwan-Hacktivists-Continue-Offensive-Against-Philippines-with-Leaks-and-Defacements-353199.shtml

35. http://hackread.com/mit-stanford-university-harvard-university-breached-personal-details-leaked-by-ag3nt47/

36. http://hackread.com/mit-stanford-university-harvard-university-breached-personal-details-leaked-by-ag3nt47/

37. http://hackread.com/mit-stanford-university-harvard-university-breached-personal-details-leaked-by-ag3nt47/

38. http://krebsonsecurity.com/wp-content/uploads/2013/05/DHSEM-01-SAU-02-UFOUO-HSN-OpUSA-Criminal-Hackers-Planning-Cyber-Attacks-05012013.pdf

39. http://www.hackersnewsbulletin.com/2013/05/list-of-websites-affected-under-opusa.html

As usual, let us begin with the Daily Trend Chart. The peak of April the 2nd seems to be quite an exception for a quiet month, showing a constant trend, except for the decrease towards the end.

Similarly to March, the Motivations Behind Attacks Chart confirms the predominance, inside the sample, of the attacks motivated by hacktivism, leading the chart with 56% (was 50% during the previous month).

And, again, similarly to March, DDoS leads the Distribution of Attack Techniques Chart with nearly 35%. SQLi ranks at number three with nearly the same value than the previous month (13.5%). It is worth to mention the rise of the cases of account hijacking, on the rise of the attacks carried on by the Syrian Electronic Army.

Again, the wave of DDoS attacks affects the Distribution Of Targets Chart, lead by Financial Targets with 32%, twice as much as the industrial sector, ranking at the second place with nearly 15%. Apparently the attention against the governmental targets is decreasing, as a result, they rank at number three with 10.7%.

As usual, please bear in mind that the sample must be taken very carefully since it refers only to discovered attacks included in my timelines. The sample does not pretend to be exhaustive but only aims to provide an high level overview of the “cyber landscape”.

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Related articles

• March 2013 Cyber Attacks Statistics (hackmageddon.com)
• 16-30 April 2013 Cyber Attacks Timeline (hackmageddon.com)
• 1-15 April 2013 Cyber Attacks Timeline (hackmageddon.com)

The most remarkable event of this period has certainly been the breach suffered by Living Social potentially exposing 50 million customers of the e-commerce website. Other illustrious victims of the month include the mobile operator DoCoMo and the online reputation firm Reputation.com.

The wake of DDoS attacks has continued even in the second part of the month: once again several U.S. banks have fallen under the blows of the Izz ad-din al-Qassam Cyber Fighters.

Like in the first  half of the month, following a consolidating trend in this 2013, the Syrian Electronic Army has continued his wave of attacks against Twitter accounts (even the FIFA has been targeted). In one case, the hijacking of the Twitter account of Associated Press, the bogus tweets related to an alleged attack against the White House, the effect has crossed the boundaries of the cyber space (the Dow Jones Industrial Average fell 150 points, or about 1 percent, immediately following the tweet).

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

1. http://www.infowars.com/hacked-photos-show-colin-powell-at-bohemian-grove/

2. http://news.cnet.com/8301-1009_3-57579570-83/anonymous-again-hacks-into-north-korean-web-sites/

3. http://nakedsecurity.sophos.com/2013/04/16/syrian-electronic-army-npr/

4. http://www.ehackingnews.com/2013/04/anon0x03-invade-argentina-military.html

5. http://www.ithacajournal.com/article/20130416/NEWS01/304160018/NYSEG-online-hiring-site-hacked-customers-not-affected

6. http://hilf-ol-fozoul.blogspot.com/2013/04/the-attack-to-us-banks-have-been.html

7. http://news.netcraft.com/archives/2013/04/16/ugg-blog-used-to-fleece-hsbc-customers.html

8. http://hackread.com/westboro-baptist-churchs-official-facebook-page-hacked-by-anonymous/

9. http://hilf-ol-fozoul.blogspot.com/2013/04/the-continual-disruptions-in-us-banks.html

10. http://hilf-ol-fozoul.blogspot.com/2013/04/the-citizens-bank-and-ameriprise.html

11. http://news.softpedia.com/news/Bitcoin-Block-Explorer-Blockchain-info-Disrupted-by-DDOS-Attack-346497.shtml

12. http://arstechnica.com/security/2013/04/former-employee-arrested-charged-with-rooting-2700-hostgator-servers/

13. https://blog.lookout.com/blog/2013/04/19/the-bearer-of-badnews-malware-google-play/

14. http://www.cyber-n.com/2013/04/kyrgyzstan-nic-breached-microsoft.html#sthash.3hLm8oH5.Bu5QJn0L.dpbs

15. http://news.softpedia.com/news/Hackers-Deface-Google-Kyrgyzstan-and-Google-Bosnia-and-Herzegovina-346753.shtml

16. http://news.softpedia.com/news/Reddit-Disrupted-by-DDOS-Attack-4-19-2013-346850.shtml

17. http://news.softpedia.com/news/OpGabon-Gabon-Ministry-of-Justice-Other-Government-Sites-Attacked-by-Anonymous-346887.shtml

18. http://news.cnet.com/8301-1009_3-57580604-83/hackers-send-bogus-tweets-from-60-minutes-account/

19. http://thehackernews.com/2013/04/google-oman-domain-hijacked-by-moroccan.html

20. http://datalossdb.org/incidents/10108-4-316-user-names-email-addresses-and-passwords-dumped-on-the-internet

21. http://news.softpedia.com/news/Hackers-Claim-to-Have-Breached-Dubai-International-Airport-347010.shtml

22. http://arstechnica.com/security/2013/04/potent-ddos-attacks-on-mt-gox-delays-rollout-of-new-virtual-currency/

23. http://www.cyberwarnews.info/2013/04/21/108377-accounts-leaked-from-newsea-sims/

24. http://datalossdb.org/incidents/10107-2-013-names-email-addresses-ip-addresses-and-passwords-dumped-on-the-internet

25. http://datalossdb.org/incidents/10106-1-503-email-addresses-user-names-and-passwords-dumped-on-the-internet

26. http://krebsonsecurity.com/2013/04/sources-tea-leaves-say-breach-at-teavana/

27. http://www.surreycomet.co.uk/news/10306227.School_website_hacked_and_redirected_to_porn_site/

28. http://www.fifa.com/aboutfifa/organisation/media/news/newsid=2062650/index.html?cid=rssfeed&att=

29. http://www.illsecure.com/2013/04/police-of-hong-kong-hacked-by-portugal.html

30. http://news.softpedia.com/news/Austrian-Websites-of-Mercedes-Benz-Defaced-by-Turkish-Hackers-347280.shtml

31. http://arstechnica.com/security/2013/04/hacked-ap-twitter-feed-rocks-market-after-sending-false-news-flash/

32. http://datalossdb.org/incidents/10041-1-460-email-addresses-user-names-and-passwords-dumped-on-the-internet

33. http://hilf-ol-fozoul.blogspot.com/2013/04/the-bb-bank-is-under-cyber-attacks.html

34. http://news.softpedia.com/news/DDOS-Attack-on-DigiD-Impacts-10-Million-Dutch-Users-348791.shtml

35. http://news.softpedia.com/news/VideoLAN-s-Downloads-Section-Hit-by-DDOS-Attack-4-24-2013-348040.shtml

36. http://www.reuters.com/article/2013/04/24/schwab-website-idUSL2N0DA2LU20130424

37. http://hilf-ol-fozoul.blogspot.com/2013/04/the-bb-bank-is-target-of-cyber-attack.html

38. http://allthingsd.com/20130426/livingsocial-hacked-more-than-50-million-customer-names-emails-birthdates-and-encrypted-passwords-accessed/

39. http://www.cyberwarnews.info/2013/04/27/japanese-mobile-operator-ntt-docomo-hacked-credit-card-information-leaked-for-stopcispa/

40. http://www.cyberwarnews.info/2013/04/28/ntt-docomo-releases-notice-its-been-breached-apologizes-for-the-credentials-leaked/

41. http://hackread.com/iraqs-ministry-of-oil-website-hacked-defaced-by-iraqi-top-hacker/

42. http://hackread.com/university-of-zurich-hacked-3200-officials-accounts-leaked-by-ag3nt47/

43. http://www.zdnet.com/guardian-twitter-accounts-compromised-sea-takes-credit-7000014650/

44. http://news.softpedia.com/news/Reputation-com-Hacked-All-User-Passwords-Reset-350034.shtml

45. http://news.softpedia.com/news/Brazilian-Hackers-Deface-Several-Official-Ferrari-Websites-350124.shtml

Related articles

• 1-15 April 2013 Cyber Attacks Timeline (hackmageddon.com)

Anyway, the first part of April has offered many interesting port with several large scale attacks and massive breaches. The first category includes the Darkleech malware against Apache, and the gigantic brute-force attack against WordPress. The second category includes the attacks against two primary Japanese portals, the FPS War Z, Scribd, Linode, and, most of all Schnucks Markets, targeting potentially 2.4 million users.

But not only Cyber Crime in this month, even the hacktivists were quite active with their OpIsrael 2 (and its controversial damage report), the wake of attacks against North Korean web sites, and even the sixth week of DDoS attacks against the U.S. Banks carried on under the so-called Operation Ababil.

Hard times for System Administrators!

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

1. http://arstechnica.com/security/2013/04/exclusive-ongoing-malware-attack-targeting-apache-hijacks-20000-sites/

2. http://www.networkworld.com/news/2013/040413-japanese-web-portals-hacked-up-268387.html

3. http://thenextweb.com/asia/2013/04/02/anonymous-hackers-claim-15000-passwords-grabbed-from-north-koreas-uriminzokkiri-site/

4. http://www.cyberwarnews.info/2013/04/02/uk-commonwealth-bank-site-hacked-data-leaked/

5. https://www.cyberguerrilla.org/blog/?p=10162

6. http://arstechnica.com/security/2013/04/war-z-taken-offline-following-hack-that-exposed-user-passwords/

7. http://arstechnica.com/security/2013/04/anonymous-hackers-take-control-of-north-korean-propaganda-sites/

8. http://hilf-ol-fozoul.blogspot.com/2013/04/bb-has-gotten-out-of-reach-completely.html

9. http://www.zdnet.com/up-to-1-million-scribd-user-passwords-may-have-been-compromised-7000013595/

10. https://www.facebook.com/MtGox/posts/453409538076792

11. http://techcrunch.com/2013/03/08/hacker-steals-12000-worth-of-bitcoins-in-brazen-dns-based-attack/

12. http://www.cyberwarnews.info/2013/04/04/museum-with-no-frontiers-hacked-user-passport-credentials-leaked/

13. http://hilf-ol-fozoul.blogspot.com/2013/04/the-biggest-bank-in-us-has-targeted-of.html

14. http://news.softpedia.com/news/Instawallet-Hacked-Mt-Gox-Hit-by-Major-DDOS-Attack-342913.shtml

15. http://www.cyberwarnews.info/2013/04/06/publisher-standard-digital-hacked-staff-clients-and-user-credentials-leaked/

16. http://hilf-ol-fozoul.blogspot.com/2013/04/the-wells-fargo-and-bb-banks-today-have.html

17. http://news.softpedia.com/news/Online-Services-of-Dutch-Banks-Disrupted-by-DDOS-Attacks-343468.shtml

18. http://www.gameinformer.com/b/news/archive/2013/04/05/harmonix-investigating-server-hack.aspx

19. http://datalossdb.org/incidents/9952-482-accounts-including-user-names-and-clear-text-passwords-dumped-on-the-internet

20. http://www.ehackingnews.com/2013/04/first-national-bank-security-breach.html

21. http://www.cyberwarnews.info/2013/04/09/midwest-bankcentre-hacked-and-data-leaked/

22. http://www.phiprivacy.net/?p=12312

23. http://crypt0nymous.tumblr.com/post/47270432228/list-of-confirmed-affected-websites-during-opisrael

24. http://www.cyberwarnews.info/2013/04/08/israeli-avg-reseller-hacked-data-leaked-for-opisrael-v2/

25. http://datalossdb.org/incidents/9954-2-adminstrator-and-680-user-accounts-including-email-addresses-and-encrypted-passwords-which-have-been-cracked-with-clear-text-matches-dumped-on-the-internet

26. http://www.cyberwarnews.info/2013/04/08/idf-information-site-hacked-600-accounts-leaked-for-opisrael-v2/

27. http://news.softpedia.com/news/Hacktivists-Target-Over-100-000-Israeli-Sites-Officials-Say-There-s-No-Real-Damage-343610.shtml

28. http://www.southwestiowanews.com/council_bluffs/news/other/hackers-hit-iowa-college-database-with-students/article_3dfaa834-a08e-11e2-a5c4-0019bb2963f4.html

29. http://news.softpedia.com/news/Anonymous-Hacks-Belgian-Fire-Department-s-Site-in-Protest-Against-Abuse-of-Young-Girl-343732.shtml

30. http://hilf-ol-fozoul.blogspot.com/2013/04/the-cyber-attacks-against-us-banks.html

31. http://hilf-ol-fozoul.blogspot.com/2013/04/which-banks-today-have-targeted-of.html

32. http://hilf-ol-fozoul.blogspot.it/2013/04/the-cyber-attack-to-regions-bank.html

33. http://blog.cloudflare.com/patching-the-internet-fixing-the-wordpress-br

34. http://arstechnica.com/security/2013/04/more-then-30-mmorpg-companies-targeted-in-ongoing-malware-attack/

35. http://www.cyberwarnews.info/2013/04/11/azerbaijan-ministry-of-communications-and-information-technologies-documents-leaked/

36. http://www.latimes.com/local/lanow/la-me-ln-sign-hacked-usc-20130411,0,4741633.story

37. http://hilf-ol-fozoul.blogspot.com/2013/04/the-key-bank-and-hsbc-are-next-qassams.html

38. http://news.softpedia.com/news/Gigabyte-Website-Defaced-by-Hackers-A-Lot-345200.shtml

39. http://www.decaturdaily.com/stories/Hackers-got-personal-info-from-state-computers,116956

40. http://www.nytimes.com/2013/04/14/world/middleeast/hackers-reveal-witness-names-in-hariri-murder-trial.html

41.  http://www.thehackersblog.com/2013/04/6000-users-credentials-leaked-from.html#axzz2QVj4noE4

42. http://nopaste.me/paste/1610364386516a69d62dc4e

43. http://www.foxnews.com/world/2013/04/14/venezuela-maduro-twitter-account-hacked/

44. http://www.databreaches.net/?p=27335

45. http://blog.linode.com/2013/04/16/security-incident-update/

46. https://twitter.com/T3AMM3DU5A/status/323833050385481728

47. http://thehackernews.com/2013/04/google-kenya-domain-defaced-by-tiger-mte.html

Related articles

• 16-31 March 2013 Cyber Attacks Timeline (hackmageddon.com)
• 1-15 March 2013 Cyber Attacks Statistics (hackmageddon.com)
• March 2013 Cyber Attacks Statistics (hackmageddon.com)

The Daily Trend chart shows a decrease of the attacks in the second part of the month with an isolated peak on the 20th: the day of the wiper attack in Korea. Except for this the trend is clearly decreasing

Hacktivism is still on top of the Motivations Behind Attacks chart with 50% of occurrences. Same rank and a value similar to the previous month when it was at 56%. Also March confirms that Cyber Espionage campaigns are becoming more and more frequent (or at least deserve an important coverage on the chronicles). Symptom of a growing attention or simply a media hype?

The Distribution Of Attack Techniques is influenced by the Operation Ababil against U.S. Banks, that has pushed the DDoS at number one with nearly one attack above two during this month. This is very different from the previous month when SQLi led the chart with 34%. Even in this case it is important to notice the growing presence of targeted attacks on the chart (strictly related to the growing coverage of Cyber Espionage campaigns).

Last, but not least, the Distribution of Targets chart shows the financial targets at number one with nearly 30% (a clear influence of the attacks against U.S. Banks). Governmental targets are immediately behind with 25.5%. At number three a (relatively) new entry: target belonging to the news sector gain the bronze medal with the 12.4% of occurrences.

As usual, as I told before, no need to remind that the sample must be taken very carefully since it refers only to discovered attacks included in my timelines. The sample does not pretend to be exhaustive but only aims to provide an high level overview of the “cyber landscape”.

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

March is gone and hence it is time to analyze the events that characterized the past month.

Two events in particular gained the first pages of the magazines: the wiper malware in Korea and the DDoS attack against Spamhaus that, maybe exaggerating, has been defined the “biggest attack in history”.

But these were not the only noticeable attacks in this second part of the month: the Operation Ababil of the Izz ad-din al-Qassam Cyber Fighters against U.S. banks achieved a new phase, constantly disrupting the connectivity of several high profile financial targets, including Chase, USBank, etc.; Telenor admitted to have been hacked by high-tech spies emptying the content of executives’ personal computers, and also the Anonymous claimed to have breached the Mossad, despite there are many doubts about this last attack.

Other important events include a breach against MTV Taiwan (600,000 accounts), McDonald’s (200,000 accounts), the Turkish Ministry Of Economy (96,000 accounts), and Renault Colombia (31,000 accounts leaked).

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

[1] http://www.thesmokinggun.com/documents/sidney-blumenthal-email-hack-687341

[2] http://www.salemnews.com/local/x1533629707/SSU-data-breach-affects-25-000

[3] http://news.softpedia.com/news/Turkey-s-Ministry-of-Economy-and-Central-Finance-and-Contracts-Unit-Hacked-338107.shtml

[4] http://news.softpedia.com/news/Turkey-s-Ministry-of-Economy-and-Central-Finance-and-Contracts-Unit-Hacked-338107.shtml

[5] http://news.softpedia.com/news/Philippines-National-Telecommunications-Commission-Defaced-by-Anonymous-Hackers-338062.shtml

[6] http://www.newsinenglish.no/2013/03/17/telenor-reports-industrial-espionage/

[7] http://hackread.com/human-rights-watch-official-website-twitter-accounts-hacked-by-syrian-electronic-army/

[8] http://hackread.com/privacy-corps-website-breached-1847-client-accounts-with-clear-text-passwords-leaked-by-syrian-cyber-eagles/

[9] http://www.bbc.co.uk/news/technology-21954636

[10] http://hilf-ol-fozoul.blogspot.com/2013/03/usbankcom-tango-down.html

[11] http://hilf-ol-fozoul.blogspot.com/2013/03/bb-site-outages-linked-to-ddos.html

[12] http://hilf-ol-fozoul.blogspot.com/2013/03/the-chase-bank-has-targeted-of-attacks.html

[13] http://www.spider.io/blog/2013/03/chameleon-botnet/

[14] http://www.bbc.co.uk/news/world-asia-21855051

[15] http://hilf-ol-fozoul.blogspot.com/2013/03/the-attacks-of-qassam-group-have.html

[16] http://hilf-ol-fozoul.blogspot.com/2013/03/the-citibank-has-gotten-out-of-reach.html

[17] http://arstechnica.com/security/2013/03/hackers-that-took-over-xbox-live-accounts-may-be-behind-ddos-attack-on-ars/

[18] http://www.turkishajan.com/turkishajan-govde-gosterileri/renault-colombia-hacked-179731.html#post273944

[19] http://news.yahoo.com/awl-network-under-attack-212611645.html

[20] http://www.crysys.hu/teamspy/teamspy.pdf

[21] http://hilf-ol-fozoul.blogspot.com/2013/03/the-zions-bank-and-bb-have-gotten-out.html

[22] http://www.bbc.co.uk/news/technology-21879230

[23] http://news.softpedia.com/news/Website-and-Mobile-Banking-Service-of-TD-Bank-Disrupted-by-DDOS-Attack-339532.shtml

[24] http://news.softpedia.com/news/AOL-Account-of-Billionaire-John-Doerr-Hacked-by-Guccifer-339436.shtml

[25] http://www.surreycomet.co.uk/news/10306227.School_website_hacked_and_redirected_to_porn_site/

[26] http://datalossdb.org/incidents/9782-malware-may-have-resulted-in-access-to-employee-customer-and-credit-applicants-information

[27] http://edition.cnn.com/2013/02/23/world/africa/south-africa-pistorius

[28] http://www.forbes.com/sites/michaelpeck/2013/03/24/did-anonymous-hack-israels-mossad-spy-agency/

[29] http://news.softpedia.com/news/OpIranMenace-Anonymous-Hackers-Leak-Data-from-Iranian-Organizations-339834.shtml

[30] http://www.securelist.com/en/blog/208194186/Android_Trojan_Found_in_Targeted_Attack

[31] http://news.softpedia.com/news/Two-Journalism-Sites-of-the-University-of-Texas-at-Austin-Hit-by-Massive-Cyberattack-340277.shtml

[32] http://news.softpedia.com/news/Anonymous-Shows-Support-for-Rohingya-People-Myanmar-Gov-Sites-Attacked-340069.shtml

[33] http://hilf-ol-fozoul.blogspot.com/2013/03/the-wells-fargo-has-gotten-out-of-reach.html

[34] http://hilf-ol-fozoul.blogspot.com/2013/03/the-citizens-bank-has-targeted-of-next.html

[35] http://www.cyberwarnews.info/2013/03/28/official-mcdonalds-austria-taiwan-korea-hacked-over-200k-credentials-leaked/

[36] http://english.yonhapnews.co.kr/national/2013/03/26/26/0301000000AEN20130326010200315F.HTML

[37] http://hilf-ol-fozoul.blogspot.com/2013/03/the-suntrust-bank-and-ameriprise.html

[38] http://hackread.com/avg-south-africa-hacked-10000-product-keys-leaked-by-over-x/

[39] http://hilf-ol-fozoul.blogspot.com/2013/03/the-bank-of-america-and-american.html

[40] http://hackread.com/bangladeshi-anti-terrorism-rapid-action-battalion-breached-database-leaked-by-phr0zenmyst/

[41] http://www.northkoreatech.org/2013/03/30/tango-down-more-attacks-on-dprk-websites/

[42] http://www.cyberwarnews.info/2013/03/31/official-mtv-taiwan-hacked-607286-account-credentials-leaked/

[43] http://www.cyberwarnews.info/2013/04/01/first-national-bank-texas-hacked-social-security-details-leaked-for-opblacksummer/

[44] http://hackread.com/massive-cyber-attack-on-election-commission-of-pakistan-servers-by-asian-russian-hackers/

[45] http://www.cyberwarnews.info/2013/04/01/united-services-automobile-association-hacked-financial-credentials-leaked-for-opblacksummer/

The Daily Trend chart shows quite an heterogeneous shape, with a peak occurring on the 13th mainly due to the wave of defacements against high profiles Philippine governmental targets. Instead the wave of DDoS attacks in the Czech Republic is the cause of the peaks occurred during the 4th, the 6th and the 7th.

The Motivations Behind Attacks chart shows a revamp of Cyber Crime, at number one with the 49% of attacks (against the 31% of the previous month). However the influence of hacktivism remains equally high (48%).

The Distribution Behind Attacks is influenced by the waves of attacks in Czech Republic and by the third phase of the Operation Ababil. As a consequence the DDoS flies at the first place of the chart, slightly above the 50%, and well beyond SQLi that ranks at the second place with “only” 13.2% of occurrences.

But the effect of the wind of hacktivism does not end here. In fact the Distribution of Targets chart puts financial targets at number one with 27.5% of occurrences, immediately above governmental (26.4%) and twice as higher as news media, at number three with 14.3 of occurrences. It is interesting to note the “fall” of the targets belonging to industry, that, in the first two weeks of March, collected a “poor” 9.9% (but maybe this is one of those chart in which the smaller the value, the better it is).

I will never give up repeating that the sample must be taken very carefully and does not pretend to be exhaustive, since it refers only to discovered attacks included in the 1-15 March Cyber Attacks Timeline (the so-called tip of the iceberg). The purpose is only to provide an high level overview of the “cyber landscape”.

In any case, if you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Related articles

• February 2013 Cyber Attacks Statistics (hackmageddon.com)
• 1-15 March 2013 Cyber Attacks Timeline (hackmageddon.com)