Australia | Hackmageddon.com

1-15 March 2013 Cyber Attacks Timeline

March 18, 2013 Paolo Passeri 2 comments

Other troubles for system administrators: March is confirming the 2013 dangerous trend with several high profile breaches against industrial, financial and governmental targets.

The first two weeks of March have begun with the breach to Evernote, and continued with (among the others) the third phase of the infamous Operation Ababil, targeting U.S. Banks and an alleged Chinese attack against the Reserve Bank of Australia.

Additional noticeable events include a wave of DDoS attacks against several Czech Republic’s targets (belonging to media, news and financial sector), a breach suffered by the NIST Vulnerability Database (unfortunately not an isolated example of the attacks against US governmental targets happened in these two weeks) and also the leak of 20,000 records from an Avast! German distributor.

Last but not least, the examined period has also confirmed the role of Twitter as the new mean to make resounding attacks against single individuals or organizations. Qatar Foundation, Saudi Aramco, and France 24 are only several of the organizations fallen victims of accounts hijacking.

Of course, these are only the main events, feel free to scroll down the list to analyze in detail what happened in these two weeks.

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Once again, a special thanks to Kim Guldberg AKA @bufferzone for continuously advising me about significant cyber events through the Submit Form! Much Appreciated!

About these ads

Categories: Cyber Attacks Timeline, Security Tags: #OpIran, 2013, @dw_arabic, @France24_ar, @NullCrew_FTS, @observateurs, @Phr0zenM, @StateSecurityRS, @T3AMM3DU5A, aio.ir, Alladyn2, AngloAmerican, angloplatinum.co.za, angloplatinum.com, Anonymous, Anonymous Italy, Anonymous Philippines, Arnold Schwarzenegger, Ashton Kutcher, Australia, avadas.de, Avast!, Bank of America, BB&T, BCPP, Belgrade, Beyoncé, Bill Gates, Billboard, Bitcoin, BitInstant, Britney Spears, Casapounditalia.org, Ceskatelevize.cz, Chase Bank, Chevron Corporation, chevron.com, China, Colin Poweel, Colin Powell, Constantin Film, cpb.gov, csas.cz, CSOB, csob.cz, Ct24.cz, Cyber Attacks Timeline, Cypher, Czech Republic, denik.cz, Deutsche Welle, Donald Trump, Dpp.cz, drdo.gov.in, E15.cz, Equifax, eri.ir, Evernote, Experian, Facebook, Fifth Third Bank, Fio Banka, fio.cz, France 24 Arabia, France 24 observers, G.O.D., g1arng.army.pentagon.mil, Godzilla, Government, Hacker sTz, herzliyaconference.org, Hillary Clinton, HMP Isis, HSBC, Hulk Hogan, ical.ir, ict.org.il, idnes.cz, ihned.cz, India, Iran, isi.org.pk, Izz ad-Din al Qassam Cyber Fighters, Jay Z, Joe Biden, JPMorgan Chase & Co, karjera.ktu.lt, kb.cz, Kim Kardashian, Komerční Banka, ktu, lidovky.cz, majlis.ir, March, Maxney, Mel Gibson, Michelle Obama, mobilmania.cz, nationaljournal.com, natpdae.gov.bd, nespak.com.pk, Nicholas Webber, NIST, North Korea, novinky.cz, NullCrew, nvd.nist.gov, O2.cz, Oceaneering International, OpBlackSummer. Tunisian Cyber Army Al Qaida Electronic Army, Operation Ababil, Operation Green Rights, OpFuckMohammad, opm.gov, PAKbugs, Pakistan, Paris Hilton, Phr0zenMyst, PNC, Poland, Prague Stock Exchange, Pyongyang, Qatar Foundation, Raiffeisen Bank, Rasberry P, rb.cz, RBA, Reserve Bank of Australia, Robert Mueller, Sarah Palin, Saudi Aramco, seznam.cz, Soneri Bank, South Africa, South Korea, state.gov, supremecourt.gov.bd, Syrian Electronic Army, T-Mobile, T-mobile.cz, TEAM M3DU5A, th3inf1d3l, timewarnercable.com, TransUnion, Twitter, United States, US Bank, Watering Hole Attack, XSS, Zoosk, Živě.cz, Česká spořitelna

16-28 February 2013 Cyber Attacks Timeline

March 4, 2013 Paolo Passeri Leave a comment

It is time for the summary of the second half of February, two weeks of remarkable cyber attacks against high-tech giants, massive breaches and Twitter Account Hijackings.

Probably the most resounding events of this period (maybe more for the high profile of the victims than for the actual effects) are the two attacks, allegedly originating from China, (with a common root cause, the compromising of an iPhone developer forum) carried on against Apple and Microsoft.

But not only the two high-tech giants, other illustrious victims have fallen under the blows of hacktivists and cyber criminals. The list is quite long and includes Bank of America, American Express, Casio, ZenDesk, cPanel, Central Hudson Gas & Electric Corporation, etc.).

Last but not least, the unprecedented trail of Cyber attack against Twitter Profile belonging to single individuals (see Donald Trump) or Corporations (Burger King and Jeep). Maybe it is time to change the passwords…

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

A special thanks to Kim Guldberg AKA @bufferzone for continuously advising me about significant cyber events through the Submit Form! Much Appreciated!

Categories: Cyber Attacks Timeline, Security Tags: #BungaBungaBoABoA, #OpLastResort, 2013, @AFPphoto, @Anon_Cental, @DFNTSC, @Hitcher____, @MexicanH, @Phr0zenM, @ThisIsGame0ver, @TN_cyberarmy, ABC, AFP, allaahuakbar.net, American Express, Anonymous, Apple, Aspen Institute, Australia, Bahamas, Bank of America, bible.org, BRBRAITT, Burger King, Cadillac, Canada, Carl Pistorius, Casio, Central Hudson Gas & Electric Corporation, China, Clearforest, cPanel, Crypt0crew, Crysys, Cyber Attacks, Cyprus, Datuk Seri Najib Tun Razak, Defacement, Der Spiegel, Donald Trump, Drone, EADS, Educause, FBI, February, fedcenter.gov, federalagents.gov, Game Over, George K. Baum & Company, H4x0r HuSsY, Hitcher, indiaresults.com, IPD, Iran, Iran's Revolutionary Guards, IRGC, Jay Leno, JEA, Jeep, Jimmy Fallon, Kaspersky Lab, Lebanon, Lil Wayne, lp.gov.lb, LulzEs, makingaustraliahappy.abc.net.au, Malaysia, Maxney, McDonald’s, MexicanH Team, Microsoft, MiniDuke, Mongolia, MVS Comunicaciones, NATO, NBC.com, OneCalais, OpBigBrother, OpBlackSummer, OpFuckMohammad, OpMyanmar, OpWilders, Oscar Pistorius, Phr0zenMyst, police.gov.mn, premiosgoya.academiadecine.com, Psyko, Rustle League, SPVM, Sri Lanka, state.gov, Syria, Syrian Electronic Army, Team Kuwaiti Hackers, TekSystems, Telecom.nz, The People, ThyssenKrupp, Timeline, TunisianCyberArmy1, Turkey, Turkish Ajan Group, Twitter, Viru$ Noir, Xtra, Yahoo!, Zendesk

16-31 January 2013 Cyber Attacks Timeline

February 7, 2013 Paolo Passeri 1 comment

Two Weeks Living Dangerously! I have no other words to describe this second half of January (first two weeks here) that has shown an unprecedented level of attacks! And if a good day starts with the morning, this will be a very troubled year from an information security perspective.

Not only the peaks of DDoS attacks against the US Banks have reached an unstoppable peak, but, most of all, at the end of the month details have been unveiled about a massive cyber-espionage campaign allegedly orchestrated by Chinese hackers against some major US media including The New York Times, The Wall Street Journal, The Washington Post and Bloomberg News.

A very very long list of targets this month, with some high profile victims such as the U.S. Sentencing Commission, whose web site has been hacked twice and turned into an Asteroid game, but also Renault Argentina that suffered 37,000 accounts leaked.

To summarize this month is really impossible, you just have to scroll down the timeline to realize the hacking spree in this January 2013.

If this trend continues, I will have to decrease the frequency of publication…

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011 and 2012 and the related statistics (regularly updated), and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts). To do so, you can use this form.

Categories: Cyber Attacks Timeline, Security Tags: #FuckTheSystem, #OpLastResort, #OpLeak, #opphillippine, #OpScientology, #TeamGhostShell, 2013, @AnonSquadNo035, @AnonymousMexi, @DarkWebGoons, @irBreShiE, @LulzSecNeuron, @nrtnz, @RexMundi_Anon, @TheLulzWarrior, @TheNeoGod, @ThisIsGameOver, @TN_cyberarmy, @XTnR3v0LT, Aaron Swartz, Africa, Anonymous, Anonymous Mexico, AnonymousSquadNo.035, Argentina, Asteroids, Australia, Azerbaijan, ℕrtn___z, babycareadvice.com, Bank of America, Bank Of The West, bankcapitalinventory.com, BB&T, BBVA, Bloomberg News, Bloomberg Television, BreShiE, Britam Defence, britamdefence.com, buyway.be, cabinet.gov.eg, caci.dz, Canada, Capital One, cci.fr, China, Citibank, Citizens Bank, Comerica, construction.com, Cyber Attacks, Cyber Attacks Timeline, D35M0ND142, Davy Jones, Denial-of-service attack, Digicel Jamaica, dmx.gov.az, DNS Poisoning, Egypt, egyptiancabinet.gov.eg, Egyptological, eportal.adu.ac.ae, eproc.dor.gov.np, ESA, ezycoupons.co.nz, Fédération des Mutuelles de France, Fifth Third Bank, First Citizens Bank, First United Church, Game Over, GhostShell, Github, gorele.gen.tr, Gray Lady, handsontheland.org, Harris Bank, Harvard, Huntington Bank, Ic3.gov, ied.edu.hk, indec.gov.ar, Indonesia, IonCuber, Iran, Izz ad-Din al Qassam Cyber Fighters, January, JAsIrX, JokerCracker, Key Bank, Ladysmith, library.seas.harvard.edu, M&T Bank, Man-In-The-Middle, McGraw-Hill Construction, Mexico, Michigan, Microsoft, miep.uscourts.gov, MIT, mobilephonetrace.com, moiegypt.gov.eg, moinfo.gov.eg, mutuelles-de-france.fr, Nepal, New York Times, NIC.lk, NIC.tm, NullCrew, OfficialNull, OpEgypt, Operation Ababil 2, Operation Last Resort, OperationEgypt, OpMali, partitodemocraticotrentino.it, Patelco, People’s United Bank, Philippine, PNC, ProjectSunRise, Proximus Security, Regions Financial Corporation, Renault, Reporters Without Borders, Rex Mundi, sasonline.com.ph, Scientology, sedena.gob.mx, Sony, Sony Music, sonymusic.com.mx, Spam, SQL Injection, SQLi, Sri Lanka, Stethoscope.com, sulu.gov.ph, Synovus Bank, tbnnetworks.org, th3inf1d3l, Timeline, TNB, Trinity Broadcasting Network, Tunisian Cyber Army, Turkmenistan, Twitter, U.S. Sentencing Commission, UMB Financial Corporation, Umpqua Bank, UN.org, Union Bank, United Nations, United States, United States Sentencing Commission, University Federal Credit Union, University of New South Wales, University of Western Sidney, University Of Wisconsin, UNSW, usatechguide.org, ussc.gov, Wall Street Journal, Wasatchit Software, Washington Post, Watering Hole Attack, Wells Fargo, Wildan Yani Ashari, Wilton Brands LLC, wisc.edu, XL3gi0n, Xl3gi0n hackers, Zions Bank

16-31 December 2012 Cyber Attacks Timeline

January 7, 2013 Paolo Passeri 1 comment

The year is gone, and here it is the last Cyber Attack Timeline for 2012 (first part here).

The most important cyber-events of this second part of December can be considered: the third phase of the operation Ababil carried on by the Izz ad-Din al-Qassam Cyber Fighters against U.S. Banks, the attacks of the Anonymous collective against the Westboro Baptist Church, and, last but not least the Cyberwar echoes coming from Iran.

The wave of DDoS attacks carried on by the Izz ad-Din al-Qassam Cyber Fighters has taken down Six U.S. Banks under the fists of DDoS attacks apparently unstoppable. Instead the Anonymous seem to have changed tactic in their personal fight against the Westboro Baptist Church, they did not limit to DDoS the church’s website, but also performed a couple of Twitter account takeover against some key persons (with the collaboration of UGNazi members).

Instead, on the Cyberwar front, Iran confirms to be a danger zone, with some reports of a new Wiper and a simil-Stuxnet malware (even if this second news has been downplayed in a second moment.

Other noticeable news include an alleged breach to Yahoo!, a massive breach against a Chinese HP domain and a strange, controversial breach against Verizon FiOS (with data apparently leaked six months ago).

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts). To do so, you can use this form.

Categories: Cyber Attacks Timeline, Security Tags: #GameOverDay, 0-Day, 2012, 2012obama.com, @CosmoTheGod, @DearShirley, @dswdserve, @gsec_, @LulzSecPeru, @Maxn3y, @nrtnz, @ThisIsGameOver, @TibitXimer, Account Hijacking, Aiplex, airport.ch, Al-Qaida, alwayson.hp.com.cn, an0nw3bc0d3r, Anonymous, Argentina, Australia, Bank of America, BB&T, Brazil, btflive.net, Bulgaria, Byron Bay Community School, C4ISR, CECOM, Central Intelligence Agency, CFR, cfr.org, China, CIA, Citi, Citigroup, Council on Foreign Relations, cpd.gov.kw, December, Denial-of-service attack, DiabloAnon, ebuyer.com, Egypt, Eletrobras, eln.gov.br, english.stanford.edu, Fred Phelps Jr., Fred Phelps Sr., Game Over, GameOverVirus, Grey Security, Heroes of Newerth, Hewlett Packard, Hormozgan, HP, ihya.org, India, Indian Express, Internet Explorer, Iran, islaam.net, ISNA, Israel, Izz ad-Din al Qassam Cyber Fighters, Jetro/Restaurant Depo, Jigsawhacker, JokerCracker, Kuwait, Lulz Security Peru, mantrackr.com, marvin.com.mx, Maxney, mindef.gov.ar, minfin.bg, mma.gov.br, MPAA, National University of Bangladesh, nu.edu.bd, Obama Must Go!, Operation Ababil, OpFuckMohammad, OpGreenRights, Philippines, PNC, Raj Musicals, rajmusicals.in, Ransomware, Renault, Renault.bg, Shirley Phelps-Roper, SQLi, Stanford, Stuxnet, th3inf1d3l, The Islamic Network, Tibit, Turkish Ajan Hacker Group, Twitter, ucsd.edu, UGNazi, United States, US Army, US Bank, Verizon FiOS, ViruS_HimA, WBC, Wells Fargo, Westboro Baptist Church, Wiper, Xc0unt3r, XL3gi0n, Yhaoo!, Zensis, zensis.com, zunal.com

October 2012 Cyber Attacks Timeline

November 2, 2012 Paolo Passeri Leave a comment

Click here for the first part covering the Cyber Attacks from 1 to 15 October 2012.

Here is the timeline for the main Cyber Attacks in October 2012. A month that has been characterized by hacktivism and also by several remarkable cyber crime operations.

For sure the next days will be hard for taxpayers of South Carolina, whose Department of Revenue has been targeted by foreign hackers able to access records of 3.6 million of individuals. But hard days are going to come also for banks: not only the trail of DDoS attack against U.S. Banks has continued even in the second half of the month (although different groups took credit for them), but also, on the cyber crime front, Citigroup has lost 1 million of bucks because of a loophole exploited by a ring of 13 individuals. Different motivations, same lesson: bank security needs a dramatic improvement.

Moving to hactkivism, nothing new under the sun. The pale sun of October has enlightened several operations targeting governments (Greece and Italy above all, to reflect the delicate situation of these two countries) and organization all over the world…

As usual after the jump you will find all the references.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

16-30 September 2012 Cyber Attacks Timeline

October 4, 2012 Paolo Passeri 2 comments

Part One with 1-15 September 201 Timeline Here.

September is over and it’s time to analyze this month from an Information Security perspective with the second part of the Cyber Attack Timeline.

Probably this month will be remembered for the massive outage of six U.S. Banks (Bank of America, JPMorgan Chase, Citigroup, U.S. Bank, Wells Fargo and PNC ) caused by a wave of DDoS attack carried on by alleged Muslim hackers in retaliation for the infamous movie (maybe this term is exaggerated) “The Innocence of Muslims”.

China has confirmed its intense activity inside the Cyber space. Alleged (state-sponsored?) Chinese hackers were allegedly behind the attack to Telvent, whose project files of its core product OASyS SCADA were stolen after a breach, and also behind a thwarted spear-phishing cyber attack against the White House.

Adobe suffered a high-profile breach which caused a build server to be compromised with the consequent theft of a certificate key used to sign two malware strains found on the wild (with the consequent necessary revoke of the compromised key affecting approximately 1,100 files).

Last but not least, the Hacktivism fever has apparently dropped. September has offered some attacks on the wake of the #OpFreeAssange campaign, and a new wave of attacks at the end of the month after the global protests set for September, the 29^th, under the hashtag of #29s.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Categories: Cyber Attacks Timeline, Security Tags: #29S, @DeleteSec, @r0gu3An0n, @RexMundi_Anon, @_s0lar_, Adobe, Afghanistan Hackers, ALZH3R, amchamfrance.org, Anonymous, Asus OpFreeAssange, Attorney, Australia, Bangladesh Cyber Army, Bank of America, bebeauty.com.sg, Bl4k3 Security, BNL, Brazil, BukSus, Canada, Canada OASyS SCADA, China, Citigroup, com.edu, consejo-estado.es, Cyber Espionage, DDoS, Defacement, Dell SecureWorks, Denial-of-service attack, Diaoyu Islands, Distributed Denial Of Service, Donnie Wahlberg, Egypt, fip.org, Foxconn, G.O.D., Godzilla, Golden Dawn, gppeuropeo.eu, Hacktivism, hcsr.gov.sy, hello-hello.com, Hmei7, Iran, Israel, Izz ad-Din al Qassam Cyber Fighters, Japan, jobmarket.com.my, John Cena, John Morrison, JPMorgan Chase, Karachi Stock Exchange, KINOZ95, krystalhost.com.mx, Leak, lincetoyota.com, m0le, Maxney, Mirage, MirageFox, Nigeria, NullCrew Cambridge University, nxm.mx, Pakistan Army, Philippines, phpMyAdmin, PNC, policia.es, pparagon.es, ppzamora.com, psoeguaro.es, PSYCHOLYZERN, RAT, raymond-lo.com, revolutiontt.me, Rex Mundi, Rexoman, SourceForge, Spain, Spear Phishing, SQLi, Steve-O, stratigraphy.org, swftools.com, Syria, tadmor4dev.sy, Taiwan, Targeted Attack, Telvent, Telvent Canada, th3inf1d3l, The Innocence of Muslims, The Usos Team, thepiratebay.se, thetablet.co.uk, Toyota, Transcend Capital, Tulsa, Turkish Ajan Hacker Group, Twitter, tycsports.com, U.S. Bancorp, U.S. Bank, United States, United States Department of Agriculture, University of Padua, University Of Technology Sidney., uts.edu.au, Wells Fargo, White House Military Office, WHMO, Xc0unt3r, Xception Code, xL3gi0n hacker, yabroud4dev.sy, YEIZETA

16 – 31 August 2012 Cyber Attacks Timeline

September 5, 2012 Paolo Passeri Leave a comment

Here the first part with the timeline from 1 to 15 August 2012.

Here we are with the second part of the August 2012 Cyber Attacks Timeline. A second part of the month that has been characterized by hacktivism, most of all because of the so-called OperationFreeAssange, which has targeted many high-profile websites.

Among the targets of the month, Philips has been particularly “unlucky”. The Dutch giant has been the victim of three Cyber Attacks, even if there are several doubts about the authenticity of the hacks.

But maybe the biggest operation of the month is the #ProjectHellFire, carried on by the collective @TeamGhostShell, that has unleashed something as 1 million of accounts belonging to different sectors (banks, government agencies, consulting firms, law enforcement and the CIA). And the group promises new action for this Fall and Winter.

The Middle East confirms to be very hot, with a new Cyber Attack, probably another occurrence of Shamoon, targeting RasGas, yet another Oil Company.

Just one note: of course it is impossible to track all the targets of the #OpFreeAssange. You can find a complete list at cyberwarnews.info.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Categories: Cyber Attacks Timeline, Security Tags: #DoktorBass, #OpBlitzkrieg, #OpColtan, #OperationFreeAssange, #OperationGreenRights, #OpFreeAssange, #OpUkraine, #ProjectHellFire, #TeamGhostShell, 2012, @0x00x00, @57UN, @AntiLeaks, @FelixNCW, @LulzSecPeru, @MidasBank, @OphiusLab, @rootbeer_, africacollege.leeds.ac.uk, AMD, Amnesty International, Anonymous, Anonymous Australia, August, Australia, AVX, Bambuser, blizzard.com.ua, blog.amd.com, Boko Haram, borsonline.hu, Cambridge University, civic.kmu.gov.ua, corriendovoy.com, cronicadelquindio.com, Cyb3rSeC Crew, Cyber Attacks, Cyber Crime, data.gov.uk, DDoS, Defacement, Department of Work and Pensions, descubremarin.com, Distributed Denial Of Service, Dundee University, dundee.ac.uk, dwp.gov.uk, Faroe Islands, Fenerbahçe, ffu.org.ua, Fujitsu General, GlobalCerts.net, Hacktivism, hamovnichesky.msk.sudrf.ru, herts.police.uk, hotelhorba.eu, Ibrahimshah Shahulhamee, Interpol, Iranian Niroo Research Institute, Israel, Jr. r00t, Julian Assange, justice.co.uk, K0eN, Keylogger, kievcity.com.ua, kitabain.com, Lada, leeds.ac.uk, livewire.amnesty.org, Manst0rm, Marin, minagro.gov.ua, Miss Hong Kong, Moscow Court, Mr.4N1$, mvs.gov.ua, N0xiuS, N4ndu, Nigeria, nottinghamshire.police.uk, nri.ac.ir, NullCrew, OfficialNull, OpGreenRights, OpHarpoon, patriaroja.org.pe, personalimpressions.com, Peter Hain, Philips, philips.com, police.uk, POS, Prime Minister Office, Pussy Riot, r00tbeer, RasGas, REALTIME, Road Runner Safe Storage, RT.com, RUBEN_LINUX, Shamoon, Siemens, Spartak Moscow, SQL Injection, SQLi, Stun, SwapDrive, Symantec, thebotnet.com, thestudentroom.co.uk, Timeline, tornworld.com, Toyota, TVB, ucl.ac.uk, uj.terasz.hu, ukrainiansoccer.net, University College London, University Of Cambridge, University of Leeds, University of South Carolina, urdu121.net, USC, WhaleMail, Wikileaks, you-r!-k@n

August 2012 Cyber Attacks Timeline (Part I)

August 20, 2012 Paolo Passeri 4 comments

The first half of August has seen a revamping of Hacktivism, encouraged by the takedown of the famous Torrent Tracker Demonoid (and the consequent OpDemonoid targeting most of all Ukrainian sites), but also encouraged by OpAustralia, the wave of attacks against Australian Web Sites carried on against the Australian Internet Surveillance Law (apparently the latter operation was successful since the controversial law has been put on standby).

But Hacktivism was not the only “trend topic” for this period. The Middle East continues to be the cradle for unexpected cyber weapons threats. In August, two new occurrences of allegedly state sponsored malware: Gauss, a cyber-espionage tool targeting bank transaction, and Shamoon , a destructive malware targeting energy companies.

These are probably the most remarkable Cyber Events of this period, which has also seen a purported giant breach targeting Pearl.fr, a French e-commerce website whose 729,000 accounts, together with over 1 million bank transaction details, have been subtracted by hackers.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Categories: Cyber Attacks Timeline, Security Tags: #DoktorBass, #OpFreePalestine, #opfuckuganda, 2012, @AntiLeaks, @DramaSett3r, @_ignit3, Account Hijacking, afta.net.au, aibb.org.au, Amazon, Anonymous, apo.kiev.ua, Apple, asio.gov.au, AT&T, Atlanta Braves, August, Australia, Australian Institute of Business Brokers, AYYILDIZIIM-Gen~Reis, Battle.net, Blizzard Entertainment, cabledrum.net, Chicago Cubs, Chicago White Sox, ci.haines-city.fl.us, Clan VV3, Cyber Crime, dai.vn.ua, DDoS, Demonoid, Distributed Denial Of Service, dsd.gov.au, Dump, Education, Environmental Protection Agency, epa.gov, Facebook, fisu.gov.ua, Gauss, gclounge.com.au, Gizmodo, Hacktivism, Haines City, Hitcher, hptrainingcenter.com, Israel, JM511, Kapil Sibal, L0lz Security, L0lzSec, Lake City Police Association, lakecountysheriff.com, Leak, Lebanon, Los Angeles Angels of Anaheim, Malware, Mat Honan, Miami Marlins, Middle East, mil.gov.ua, National Council of Investigation and Security, nciss.org, Nepal, New York Yankees, nitc.gov.np, nnottscamra.co.uk, nrada.gov.ua, NullCrew, OpAustralia, OpDemonoid, Operation India, OpGreenRights, opmcm.gov.np, Palestinian Authority, PBBans, Pearl.fr, Phobia, Remember Emad, Reuters News, ReutersTech, RUTracker.org, San Diego Padres, San Francisco Giants, Saudi Aramco, scanbits.org, Shamoon, Siemens, Social Engineering, SQL Injection, SQLi, svalyava-vlada.gov.ua, Syrian Electronic Army, The Elite Society, Thomson Reuters, Torrent, Torrent Tracker, Trusteer, Twitter, uacrr.kiev.ua, uam.mx, Uganda, Ukraine, Universidad Autónoma Metropolitana, V0dka, Washington Nationals, WebGate, Wikileaks

February 2012 Cyber Attacks Timeline

March 5, 2012 Paolo Passeri 1 comment

Find here February 2012 Cyber Attacks Timelime Part I.

With a small delay (my apologies but the end of February has been very busy for me and not only for Cybercrooks as you will soon see), here it is the second part of my compilation with the main Cyber Attacks for February 2012.

Easily Predictable, the Hacktivism is still the main concern for System Administrators, in particular for the ones of Stratfor who suffered a huge leak of 5 million of emails.

On the same front, the threats of the Anonymous for the Friday actions have come true and as a matter of fact Law Enforcement Agencies suffered other remarkable breaches in this month: Infragard for the second time and also Interpol (a new entry) that was taken down after the arrest of 25 members of the collective. Anti ACTA protest also continue to shake Europe as also the delicate economical and social situation in Greece.

Last but not least, this month has also seen an unforgettable leak, affecting potentially more than 1.000.000 Youporn users.

As usual, the chart does not include the events related to Middle East Cyber War Timeline, that you may find at this link, as they “deserve” a dedicated timeline.

After the jump you find all the references, follows @paulsparrows for the latest updates on a regular basis and also have a look to the 2012 Cyber Attacks Timeline Master Index.

Categories: Cyber Attacks Timeline, Cyberwar, Security Tags: #AntiSec, #FFBIFriday, #FFF, #OpApodacaSegura, #OpBlitzkrieg, #OpPiggyBank, @alsa7rx, @b4lc4nh4ck, @ItsKahuna, @muldaria48, @r00tw0rm, @Visi0nZ, Abu Nazir, ACTA, ANCMRR, Anonymous, Anonymous Srbija, Australia, Bangladesh Cyber Army, BCA, CabinCr3w, CAC, CCSU, Central Connecticut State University, D157UR83D, D35M0ND142, DarkComet, Defacement, FTC, GEO Group, geogroup.com, Goya Awards, gram24.pl, Greece, Hacktivism, hcisingapore.com, ias100.in, Information security, Infragard, infragard.dayton.oh.us, Inj3ct0r, Interpol, Israel, La Nacion, LABusinessConnect.com, lacpca.com, lanacion.com.ar, Law enforcement agency, Leak, Loongson, Los Angeles Police Canine Association, Malware, Mexico, Middle East, MIT, MySQL, oacp.ca, Ontario Association of Chiefs Of Police, Oracle, oso iSHAUN, Pastebin, RAT, Roland, Romania, Royal Navy, Security, Skype, springfieldmo.gov, SQL Injection, SQLi, Star Vault, Stratfor, Syria, System administrator, TeamAnarchyDumpz, TeamoSo, Telecomix, Teyana Taylor, Turkey Cyber Army, Twitter, UN, UNEP.org, United Nations, United Nations Environment Programme, Universal, Universal Music, University Of Washington, vita.pl, Wikileaks, xdev, Yamaha Commercial Audio Systems, Youporn, Z-Bot

November 2011 Cyber Attacks Timeline (Part II)

November 30, 2011 Paolo Passeri Leave a comment

The second half of November has confirmed the trend seen in the previous report covering the first half of the month. The period under examination has confirmed a remarkable increase in Cyber Attacks from both a quality and quantity perspective.

Although the month has been characterized by many small attacks, several remarkable events have really made the difference.

Among the victims of the month, Finland deserves a special mention in this unenviable rank: the second half of the month has confirmed the emerging trend for this country, which suffered in this period two further breaches of huge amounts of personal data, for a global cumulative cost, computed on the whole month, around $25 million.

But Finland was not the only northern European country hit by cybercrookers (maybe the term cyberprofessionals would be more appropriate): Norwegian systems associated with the country’s oil, gas and energy sectors were hit with an APT based cyber attack resulting in a loss of sensitive information including documents, drawings, user names and passwords.

But once again the crown of the most remarkable breach of the month is placed upon the head of South Korea which suffered another huge data dump affecting users of the popular MMORPG “Maple Story” affecting theoretically 13 million of users, nearly the 27% of the Korean population, for an estimated cost of the breach close to $2.8 billion.

The list of affected countries this month includes also 243,089 Nigerian users, victims of the hack of Naijaloaded, a popular forum.

Microsoft has been another victim in this November, with a phishing scam targeting Xbox Live users. Details of the scam are not clear, although each single affected user in U.K. might have lost something between £100 and £200 for a total cost of the breach assimilable to “million of Pounds”.

November will make history for showing for the first time to information security professionals the dangers hidden inside the SCADA universe (and not related to Nuclear Reactors). The echo of Stuxnet and Duqu is still alive, but this month was the the turn of SCADA water pumps, that have suffered a couple of attacks (Springfield and South Houston), the first one allegedly originated from Russia and the second one from a “lonely ranger” who considered the answer from DHS concerning the first incident, too soft and not enough satisfactory. My sixth sense (and one half) tells me that we will need to get more and more used to attacks against SCADA driven facilities.

The Anonymous continued their operations against governments with a brand new occurrence of their Friday Releases, targeting a Special Agent of the CA Department and leaking something like 38,000 emails. Besides from other some sparse “small” operations, the other remarkable action performed by the Anonymous collective involved the hacking of an United Nations (old?) server, that caused personal data of some personnel to be released on the Internet.

November Special mentions are dedicated (for opposite reasons) to HP and AT&T. HP for the issue on their printers discovered by a group of Researchers of Columbia Univerity, which could allow a malicious user to remotely control (and burn) them. AT&T deserved the special mention for the attack, unsuccessful, against the 1% of its 100 million wireless accounts customer base.

In any case, counting also the “minor” attacks of the month, the chart shows a real emergency for data protection issues: schools, e-commerce sites, TVs, government sites, etc. are increasingly becoming targets. Administrators do not show the deserved attention to data protection and maybe also the users are loosing the real perception of how much important is the safeguard of their personal information and how serious the aftermaths of a compromise are.

As usual, references for each single cyber attack are reported below. Have a (nice?) read and most of alle share among your acquaintances the awareness that everyone is virtually at risk.

November 2011 Cyber Attacks Timeline (Part I) (paulsparrows.wordpress.com)

Categories: Cyber Attacks Timeline, Security Tags: #opRobinHood, 0-Day, 0-Day Vulnerability, 101domain.com, @d4op, @FailRoot, @ItsKahuna, @xDarkSton3x, Advanced Persistent Threat, Anonymous, Anonymous Dominicana, Anonymous_DR, APEC, APT, Ashiyane, Asia Pacific Economic Cooperation, AT&T, Australia, bayareaconnection.net, Bhutan, BIND, BIND 9, Bishop McDevitt Catholic High School, Black Friday, Brazil, Breach, CA Department Of Justice, Canadian Foundation for Economic Education, Carbajal Realty, CLGCA, Club Penguin Private Servers, Columbia University, CTE, Curran-Gardner Public Water District, DDoS, Defacement, Distributed Denial Of Service, DNS, DrumMusic.TV, evidalia.es, File Recursion, Finland, globeclassroom.ca, Godzilla, Guatemala Congress, Hacking, Harvard School of Engineering And Applied Sciences, havij, Host Booter, HP, Humormillnews.com, Huoltamo.com, Hyderbad Alumni Association, India, itcgcesaro.gov.it, itcpantaleo.gov.it, itimarconi.gov.it, iTunes, Jackeh, Japan, Johns Hopkins University, Kimallus.fi, Leak, LulzSec Portugal, Lumen Christi College, macromatic.com, Maharashtra Highway Police, Malware, MapleStory, Maricopa Community Colleges, math2020.com, mcdevitths.org, MetalSoft team, Microsoft, MMORPG, Naijaloaded, Nec, Netcar.fi, NEWWBIE3vilC063S, Nexon, Nike-free-run.us, Norway, Norway's National Security Authority, NSM, Pakistan, Parks.it, Pastebin, Phishing, Poliklinika.fi, powerin10, relayspec.com, SCADA, Singlehanded Sailing Society Forum, Sinterklaas, Sitcoms Online, South Houston's Water Supply Network, SQL Injection, St0rm, Stanford University, Stomp, Sudan Airways, Sudan Cyber Army, TeaMp0isoN, Terkkari.fi, Terve.fi, Terve24.fi, TheMrX, thereadersweb.com, Tohtori.fi, UN, Unicersity Of Washington, United Nations, Univeristy Of California Riverside, Univeristy Of Oregon, University Of Melbourne, Vagus Cosmetics, Verkkoklinikka.fi, Xbox Live

About these ads

May 2013
M	T	W	T	F	S	S
« Apr
	1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

Twitter

RT @jc_vazquez: Vista Equity Partners to Buy Websense #News #InfoSec on.wsj.com/13BfWaw via @WSJ - 1 day ago
Pentagon OKs Androids, BlackBerrys for soldiers nakedsecurity.sophos.com/2013/05/07/pen… - 2 days ago
April 2013 Cyber Attacks Statistics wp.me/p14J6X-2oX - 2 days ago
RT @LastlineLabs: Marco Cova from Lastline talking about hacktivism on Italian TV ow.ly/l8Az6 - 3 days ago
RT @lastlineinc: Malware can make itself invisible: in the case of RSA security's breach, malware went undetected for 1/2 year http://t.co/… - 4 days ago
RT @gianlucaSB: SMS-based command and control protocols are here ow.ly/l47Ye - 5 days ago
Skype with care Microsoft is reading everything you write h-online.com/security/news/… - 1 week ago
How the Syrian Electronic Army Hacked The Onion - Onion Inc.'s Tech Blog theonion.github.com/blog/2013/05/0… - 1 week ago
@Xyri3 sorry I forgot :) Done! - 1 week ago
@Xyri3 sure when you want. - 1 week ago

Follow @paulsparrows

Hackmageddon.com

Archive

1-15 March 2013 Cyber Attacks Timeline

16-28 February 2013 Cyber Attacks Timeline

16-31 January 2013 Cyber Attacks Timeline

16-31 December 2012 Cyber Attacks Timeline

16-30 September 2012 Cyber Attacks Timeline

16 – 31 August 2012 Cyber Attacks Timeline

February 2012 Cyber Attacks Timeline

November 2011 Cyber Attacks Timeline (Part II)

Related articles

About The Author

Stats

Support My Work!

Share:

Stay Tuned!

Interesting Links

News

About This Blog

Calendar

Archive

Tag

Recent Posts

Top Posts & Pages

Visitors from…

Twitter

Follow “Hackmageddon.com”

Archive

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Related articles

Share:

Like this:

About The Author

Stats

Support My Work!

Share:

Stay Tuned!

Interesting Links

News

About This Blog

Calendar

Archive

Tag

Recent Posts

Top Posts & Pages

Visitors from…

Follow “Hackmageddon.com”