Cyber Attacks Timeline | Hackmageddon.com

1-15 April 2013 Cyber Attacks Timeline

May 1, 2013 Paolo Passeri Leave a comment

I know, I am a little late this month. We have just entered May and I was able to publish the first part of the Timeline of April. I will try to maintain the usual rhythm and to be more punctual for the next releases.

Anyway, the first part of April has offered many interesting port with several large scale attacks and massive breaches. The first category includes the Darkleech malware against Apache, and the gigantic brute-force attack against WordPress. The second category includes the attacks against two primary Japanese portals, the FPS War Z, Scribd, Linode, and, most of all Schnucks Markets, targeting potentially 2.4 million users.

But not only Cyber Crime in this month, even the hacktivists were quite active with their OpIsrael 2 (and its controversial damage report), the wake of attacks against North Korean web sites, and even the sixth week of DDoS attacks against the U.S. Banks carried on under the so-called Operation Ababil.

Hard times for System Administrators!

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts). Read more…

About these ads

Categories: Cyber Attacks Timeline, Security Tags: #Dark_BaBa, #OpLiberation, 0-Day, 2013, @LatinHackTeamR, @LulzSecPeru, @LulzSecWiki, @T3AMM3DU5A, @uriminzok, Account Hijacking, Al Mustaqbal, Alabama, Alon, American Express, Anonymous, Apache, April, avg.co.il, Azerbaijan, Bank of America, BB&T, Belgium, Bitcoin, brandweerbree.be, Bree, Brute Force, Capital One, Chase, Citizen Bank, ColdFusion, commbankuk.co.uk, Commonwealth Bank of Australia, Cyber Attacks Timeline, Darkleech, DDoS, Fire Department, First National Bank of Mercersburg, Flickr, fnbmbg.com, Gigabyte Technology, Goo, Google, google.co.ke, Harmonix, Hash, HPTH, hpth.org.uk, HSBC, HTP, Ideal, idinfo.co.il, Imgur, indiamp3.com, ING, Instawallet, Israel, Izz ad-Din al Qassam Cyber Fighters, Japan, jfuinsurance.com, JockerCracker, Johnson Fu Insurance Agency, julis.de, Junge Liberale, Kaspersky Lab, Kenya, Key Bank, Kirkwood Community College, LAPD, LatinHackTeamReborn, Lebanon, Linode, Maxney, Midwest Bank Centre, midwestbankcentre.com, mofa.gov.ps, Mtgox, Museum With No Frontiers, museumwnf.org, Netherlands, Nicolas Maduro, North Korea, OpBlackSummer, Operation Ababil, OpIsrael, OpNorthKorea, Palestine, Polo Tecnico ITIS-IPIAS Giulianova, Rafik Hariri, Regions Bank, restoringfamily.com, Road Signs, Schnucks Markets, Scribd, SQLi, standardmedia.co.ke, TEAM M3DU5A, Tunisian Cyber Army, Turkish Ajan Group, Twitter, uriminzokkiri.com, USC, War Z, Wells Fargo, Winnti, WordPress, Yahoo!

1-15 March 2013 Cyber Attacks Timeline

March 18, 2013 Paolo Passeri 2 comments

Other troubles for system administrators: March is confirming the 2013 dangerous trend with several high profile breaches against industrial, financial and governmental targets.

The first two weeks of March have begun with the breach to Evernote, and continued with (among the others) the third phase of the infamous Operation Ababil, targeting U.S. Banks and an alleged Chinese attack against the Reserve Bank of Australia.

Additional noticeable events include a wave of DDoS attacks against several Czech Republic’s targets (belonging to media, news and financial sector), a breach suffered by the NIST Vulnerability Database (unfortunately not an isolated example of the attacks against US governmental targets happened in these two weeks) and also the leak of 20,000 records from an Avast! German distributor.

Last but not least, the examined period has also confirmed the role of Twitter as the new mean to make resounding attacks against single individuals or organizations. Qatar Foundation, Saudi Aramco, and France 24 are only several of the organizations fallen victims of accounts hijacking.

Of course, these are only the main events, feel free to scroll down the list to analyze in detail what happened in these two weeks.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Once again, a special thanks to Kim Guldberg AKA @bufferzone for continuously advising me about significant cyber events through the Submit Form! Much Appreciated!

Categories: Cyber Attacks Timeline, Security Tags: #OpIran, 2013, @dw_arabic, @France24_ar, @NullCrew_FTS, @observateurs, @Phr0zenM, @StateSecurityRS, @T3AMM3DU5A, aio.ir, Alladyn2, AngloAmerican, angloplatinum.co.za, angloplatinum.com, Anonymous, Anonymous Italy, Anonymous Philippines, Arnold Schwarzenegger, Ashton Kutcher, Australia, avadas.de, Avast!, Bank of America, BB&T, BCPP, Belgrade, Beyoncé, Bill Gates, Billboard, Bitcoin, BitInstant, Britney Spears, Casapounditalia.org, Ceskatelevize.cz, Chase Bank, Chevron Corporation, chevron.com, China, Colin Poweel, Colin Powell, Constantin Film, cpb.gov, csas.cz, CSOB, csob.cz, Ct24.cz, Cyber Attacks Timeline, Cypher, Czech Republic, denik.cz, Deutsche Welle, Donald Trump, Dpp.cz, drdo.gov.in, E15.cz, Equifax, eri.ir, Evernote, Experian, Facebook, Fifth Third Bank, Fio Banka, fio.cz, France 24 Arabia, France 24 observers, G.O.D., g1arng.army.pentagon.mil, Godzilla, Government, Hacker sTz, herzliyaconference.org, Hillary Clinton, HMP Isis, HSBC, Hulk Hogan, ical.ir, ict.org.il, idnes.cz, ihned.cz, India, Iran, isi.org.pk, Izz ad-Din al Qassam Cyber Fighters, Jay Z, Joe Biden, JPMorgan Chase & Co, karjera.ktu.lt, kb.cz, Kim Kardashian, Komerční Banka, ktu, lidovky.cz, majlis.ir, March, Maxney, Mel Gibson, Michelle Obama, mobilmania.cz, nationaljournal.com, natpdae.gov.bd, nespak.com.pk, Nicholas Webber, NIST, North Korea, novinky.cz, NullCrew, nvd.nist.gov, O2.cz, Oceaneering International, OpBlackSummer. Tunisian Cyber Army Al Qaida Electronic Army, Operation Ababil, Operation Green Rights, OpFuckMohammad, opm.gov, PAKbugs, Pakistan, Paris Hilton, Phr0zenMyst, PNC, Poland, Prague Stock Exchange, Pyongyang, Qatar Foundation, Raiffeisen Bank, Rasberry P, rb.cz, RBA, Reserve Bank of Australia, Robert Mueller, Sarah Palin, Saudi Aramco, seznam.cz, Soneri Bank, South Africa, South Korea, state.gov, supremecourt.gov.bd, Syrian Electronic Army, T-Mobile, T-mobile.cz, TEAM M3DU5A, th3inf1d3l, timewarnercable.com, TransUnion, Twitter, United States, US Bank, Watering Hole Attack, XSS, Zoosk, Živě.cz, Česká spořitelna

16-31 January 2013 Cyber Attacks Timeline

February 7, 2013 Paolo Passeri 1 comment

Two Weeks Living Dangerously! I have no other words to describe this second half of January (first two weeks here) that has shown an unprecedented level of attacks! And if a good day starts with the morning, this will be a very troubled year from an information security perspective.

Not only the peaks of DDoS attacks against the US Banks have reached an unstoppable peak, but, most of all, at the end of the month details have been unveiled about a massive cyber-espionage campaign allegedly orchestrated by Chinese hackers against some major US media including The New York Times, The Wall Street Journal, The Washington Post and Bloomberg News.

A very very long list of targets this month, with some high profile victims such as the U.S. Sentencing Commission, whose web site has been hacked twice and turned into an Asteroid game, but also Renault Argentina that suffered 37,000 accounts leaked.

To summarize this month is really impossible, you just have to scroll down the timeline to realize the hacking spree in this January 2013.

If this trend continues, I will have to decrease the frequency of publication…

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011 and 2012 and the related statistics (regularly updated), and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts). To do so, you can use this form.

Categories: Cyber Attacks Timeline, Security Tags: #FuckTheSystem, #OpLastResort, #OpLeak, #opphillippine, #OpScientology, #TeamGhostShell, 2013, @AnonSquadNo035, @AnonymousMexi, @DarkWebGoons, @irBreShiE, @LulzSecNeuron, @nrtnz, @RexMundi_Anon, @TheLulzWarrior, @TheNeoGod, @ThisIsGameOver, @TN_cyberarmy, @XTnR3v0LT, Aaron Swartz, Africa, Anonymous, Anonymous Mexico, AnonymousSquadNo.035, Argentina, Asteroids, Australia, Azerbaijan, ℕrtn___z, babycareadvice.com, Bank of America, Bank Of The West, bankcapitalinventory.com, BB&T, BBVA, Bloomberg News, Bloomberg Television, BreShiE, Britam Defence, britamdefence.com, buyway.be, cabinet.gov.eg, caci.dz, Canada, Capital One, cci.fr, China, Citibank, Citizens Bank, Comerica, construction.com, Cyber Attacks, Cyber Attacks Timeline, D35M0ND142, Davy Jones, Denial-of-service attack, Digicel Jamaica, dmx.gov.az, DNS Poisoning, Egypt, egyptiancabinet.gov.eg, Egyptological, eportal.adu.ac.ae, eproc.dor.gov.np, ESA, ezycoupons.co.nz, Fédération des Mutuelles de France, Fifth Third Bank, First Citizens Bank, First United Church, Game Over, GhostShell, Github, gorele.gen.tr, Gray Lady, handsontheland.org, Harris Bank, Harvard, Huntington Bank, Ic3.gov, ied.edu.hk, indec.gov.ar, Indonesia, IonCuber, Iran, Izz ad-Din al Qassam Cyber Fighters, January, JAsIrX, JokerCracker, Key Bank, Ladysmith, library.seas.harvard.edu, M&T Bank, Man-In-The-Middle, McGraw-Hill Construction, Mexico, Michigan, Microsoft, miep.uscourts.gov, MIT, mobilephonetrace.com, moiegypt.gov.eg, moinfo.gov.eg, mutuelles-de-france.fr, Nepal, New York Times, NIC.lk, NIC.tm, NullCrew, OfficialNull, OpEgypt, Operation Ababil 2, Operation Last Resort, OperationEgypt, OpMali, partitodemocraticotrentino.it, Patelco, People’s United Bank, Philippine, PNC, ProjectSunRise, Proximus Security, Regions Financial Corporation, Renault, Reporters Without Borders, Rex Mundi, sasonline.com.ph, Scientology, sedena.gob.mx, Sony, Sony Music, sonymusic.com.mx, Spam, SQL Injection, SQLi, Sri Lanka, Stethoscope.com, sulu.gov.ph, Synovus Bank, tbnnetworks.org, th3inf1d3l, Timeline, TNB, Trinity Broadcasting Network, Tunisian Cyber Army, Turkmenistan, Twitter, U.S. Sentencing Commission, UMB Financial Corporation, Umpqua Bank, UN.org, Union Bank, United Nations, United States, United States Sentencing Commission, University Federal Credit Union, University of New South Wales, University of Western Sidney, University Of Wisconsin, UNSW, usatechguide.org, ussc.gov, Wall Street Journal, Wasatchit Software, Washington Post, Watering Hole Attack, Wells Fargo, Wildan Yani Ashari, Wilton Brands LLC, wisc.edu, XL3gi0n, Xl3gi0n hackers, Zions Bank

I am Terribly Late!

February 6, 2013 Paolo Passeri Leave a comment

WTF! This month I am terribly late with the Cyber Attack Timeline. I can anticipate that, as you will have probably guessed, this month we have seen an unprecedented rate of attacks.

I have already compiled the timeline of January, I still need a little bit of time to check it and to write the comments as usual. I still do not know if I will be able to publish it today or tomorrow (I am quite busy this afternoon) but, maximum at 12:00 CET of tomorrow it will be here.

Thanks for your patience, and please continue to support my work with your visits!

Categories: Security Tags: Cyber Attacks Timeline, Timelines

June 2012 Cyber Attacks Timeline (Part I)

June 18, 2012 Paolo Passeri Leave a comment

Update 07/05/2012: June 2012 Cyber Attacks Timeline (Part II)

A (first half of the) month living dangerously…

June has come and strongly confirms that Summer is the preferred month for Cybercrookers: just look back at June 2011 and you will probably remember the days of Lulz of the infamous LulzSec Collective (which curiously seems to be reborn!).

June 2012 has shown a remarkable number of incidents and is proving to be a mensis horribilis (horrible month) for Social Networks and Online Services in general, due to the high profile breaches of LinkedIn, Last.Fm, eHarmony and the online game League of Legends.

On a geographic scale, looks like China is becoming another important source of Cyber incidents, having been targeted from #TeamGhostShell, who claim, inside their #ProjectDragonFly, to have obtained up to 800,000 accounts from different sources.

Hacktivism-led actions seem (apparently) to decline, whilst, on the Cyber Crime front, a new collective, UGNazi, is taking the scene, having confirmed, in the first part of June, the wake of cyber attacks, we have become familiar with for some time.

Another Infosec Summer promising to be very hot!

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timeline.

Categories: Cyber Attacks Timeline, Security Tags: #DoktorBass, #FTPFriday, #opQuebec, #OpUkraine, #ProjectDragonFly, #ProjectGhostShell, #TeamGhostShell, .c0mrade, 2012, 3xp1r3 Cyber Army, 4chan.org, 4J Eugene School District, @Codeinesec, @D1str4ct1on, @GoogleSWE, @k0detec, @MrBombillo, @MrSecurity2, @nrtnz, @Reckz0r, @RedHack_EN, @SunkiAnonymous, @SwaggSec, @TeamDigi7al, @TheWikiBoat, @VenezuelanH, Account Hacking, Account Hijacking, AK-88, Allfreelancework.com, AnonTeenUSA, Anonymous, Anonymous Australia, Anonymous India, bearing.com.cn, Black Tiger Security, ca.gov, Canberra craft and design centre, CERT-In, chalco.com.cn, Channel V, channelv.in, China, China Telecom, City of Clarksville, CloudFlare, College of Engineering, Computer crime, craftact.org.au, ctemag.com, CustomCoD.com, Cutting Tool Engineering, Cyber Attacks Timeline, Cyber Crime, Cyberwarfare, D35M0ND142, dabi.gov.ua, DDoS, defense.gov, destinypatrolsoftware.com, digitword.com, DNS Poisoning, Dropbox, eHarmony, Fleetwood School District, Formula 1, formulatours.com, freemason.org, gema.de, Gmail, Google, greenbergresearch.com, Hacktivism, Haniko Yunokawa, Health Council Of Canada, healthcouncilcanada.ca, Holy Lulz, Hotmail, icdalian.com, Intel, June, kieveuro2012.org, ksrmce.ac.in, Last.fm, Law Enforcement, law.com, League of Legends, LinkedIn, lohud.com, LulzSec, LulzSec Reborn, Lustigen Taschenbuch, Masons Of California, Matthew Prince, Merco Tour, mercotour.com, Microsoft, Mitt Romney, MOAB Training, moabtraining.com, Montreal, motorcycleindustryjobs.com, MTNL, MTV Asia, myarcade.nl, National Health Service, navy.mil, NHS, Norton-Z, of Call Of Duty, Online game, Operation Green Rights, Penn Station Inc., Poltergeisth4cker, ri.gov, seprelad.gov.py, Service de Police de la Ville de Montreal, SHA-1, sisaketedu1.go.th, Social Action Secretariat, Social Network, SpexSec, spvm.qc.ca, SQL Injection, SQLi, suteym.org.mx, Team Intricate, TeamDeathH4X0R, The Unknown, The Unknowns, therfl.co.uk, Toronto Police Department, Transportation Worker Identification Credential, TweetGif, TWIC, Twitter, ua.edu, udch.edu.pe, UGNazi, UNF, United States Department of Defense, Universidad De Chiclayo, University of Alabama, University of North Florida, US Immigration Services, usatoday.com, uscis.gov, uslandandhome.com, veluwe.info, VoxAnon.org, Warner Bros, wawa.com, weather.gov, wepay.com, Westboro Baptist Church, William Ray Norwood Jr, woundedwarriorproject.org, XPerf3cti0n

May 2012 Cyber Attacks Statistics

June 10, 2012 Paolo Passeri 1 comment

As I did last month for the Cyber Attacks occurred in April, I have aggregated the data collected on the timelines of May (on the right) in order to provide a consolidated view of the month according to the three parameters of Motivations Behind Attacks, Distribution of Targets and Distribution of Attack Techniques. Again, no need to repeat that data must be taken very carefully since they do refers only to discovered attacks (the so-called tip of the iceberg), and hence do not pretend to be exhaustive but only aim to provide an high level overview of the “cyber landscape” of the month.

As far as Motivations Behind Attacks are concerned, month after month, the charts are becoming monotonous. Cyber Crime ranked undoubtedly at number one with the 61% of occurrences. Twice the occurrences of Hacktivism which ranked at number two. In this chart, Cyber Warfare and Cyber Espionage motivated-attacks are well behind although they were few but good (One Flame was enough for this month, wasn’t it?).

The Distribution of Targets chart is highly fragmented even if with a familar pattern: Government targets ranked firmly on top of the preferences for the attackers, with Education and Law Enforcement targets completing the top three (although, compared to April, they swapped their positions in this unenviable chart). It worths to mention that targets belonging to organizations that offers on-line services are fragmented as well, but if the single entries are summed up, they would rank at number two with approximately the 15% of occurrences.

The Distribution of Attack Techniques chart whows that SQL Injection has been the preferred weapon used by Cyber Criminals in May, overtaking Distributed Denial of Service, the Cyber Paintball Pistol. Clearly the occurrences of DDoS attacks are influenced by the winds of hacktivism which did not blow so high in May. Interesting to notice a further important number of events (17% of the sample) related to unknown attacks targeting DBs, which clearly shows that data repositories are proving to be the weakes element of the chain. May the patch enFORCEment be with you!

Categories: Security Tags: Computer crime, Cyber Attacks, Cyber Attacks Statistics, Cyber Attacks Timeline, Cybercrime, Cyberwarfare, DDoS, Defacement, Denial of Service, Denial-of-service attack, Hacktivism, Law enforcement agency, May, SQL Injection, SQLi, Statistics

May 2012 Cyber Attacks Timeline (Part II)

June 4, 2012 Paolo Passeri Leave a comment

As usual, here it is the second part of the Cyber Attacks Timeline for the month of May 2012: a month particularly rich of Cyber Events. As you will probably know, the Flame malware has monopolized the attention, deserving the most attention from the Information Security Professional.

Nevertheless the scene has offered many interesting events, among which it worths to mention the breach of 123,000 federal employees records, the breach affecting University of Nebraska, and, last but not least, the breach against WHCMS (which, as we will soon see, has proved to be fatal for its author).

The hacktivist front is still hot and preannounces another hot summer. On the other hand the authors of several remarkable cyber-criminal actions are probably going to leave the scene: the long trail of arrests made by Law Enforcement Agencies against hackers has continued in this month and has hence led to the arrest of Cosmo, the leader of the infamous group UGNazi, which claimed to be the author of the Cyber Attack against WHCMS.

In your opinion are the arrests against hackers really going to stop the growing number of Cyber Attacks (acting as a deterrent)?

After the jump you find all the references, and at this link the first part covering 1-15 May.

Categories: Cyber Attacks Timeline, Security Tags: #DoktorBass, #FTPFriday, #MMM, #OpJailer, #OpLeveson, #OpLithChild, 123-reg.co.uk, @AnonNyre, @AnonymousSinn, @CosmoTheGod, @EcecusHxc, @k0detec, @nrtnz, @opindia_back, @planethacks, @rwandanhackers, @s3rverexe, @TheWikiBoat, @Vizi0, abcis.ca, Account Hijacking, Al-Qaeda, Alaska Large Structures, Alone Hacker, alphaunmannedsystems.com, altrec.com, American Advertising Federation, American Express, ANONDOG1, AnonTeenUSA, Anonymous, ANTIJEST, APT, Association of British Columbia Land Surveyors, ATeam, AZ.nl, BERRI, Bharatiya Janata Party, BitTorrent, bjs.ojp.usdoj.gov, Bureau of Justice Statistics, bzpower.net, Canada, CERT-In, Chicago Police Department, China, CISPA, Comcast, CrySyS Lab, Cyber Attacks Timeline, Cyber Crime, Cyber Warriors Team, Cyberwar, CyberZeist, DDoS, Defacement, dflvwclub.de, Distributed Denial Of Service, djartsgames.ca, eapolice.com, ECS Tuning, Education Ministry, eeas.europa.eu, EEKDAKAT, emcshoppe.co.uk, European External Action Service, EvilShad0w, Felix Roque, Flame, FOOLISH, GameArena, gamearena.com.au, gamereplays.org, Glade County, gladessheriff.org, GOGOBEANANON, gridironstrategies.com, Habbo Hotel, Hacktivism, Hillary Rodham Clinton, Hopsin, hyundai, IBM, ico.gov.uk, ilink.ph, India, Information Commissioner's Office, Iran, irimo.ir, iwacu1.com, Joseph Roque, Kaspersky Lab, kogler-natursteinwerk.at, Kosova Hacker Security, Law Enforcement, Mail Mayhem Monday, marionso.com, Metro Goldwyn Mayer, MyBB.com, NASA, NATO, NEURON, Norton-Z, NRAO, NRTN-Z, opm.gov, owegopolice.org, Palestinian Authority, pharmacist.com, Pizza Patron, Pizza Por Favor, PMDB do Maranhão, pmdbma.com.br, Quebec Liberal Party, rbi.org.in, recallroque.com, Reliance, Ronin Concepts Security Elite Ltd, roninconcepts.co.uk, Security, Serco, sex06.nl, sierracounty.ws, Social Engineering, solarimpulse.com, Soup.io, SQL Injection, SQLi, SSL, Stanford, Stanford University, teamskeet.com, Telstra, The Pirate Bay, Thrift Savings Plan, tmprotection.com, toplaughs.com, Torrent, U.S. Office of Personnel Management, uabonline.org, UGNazi, Union Of Arab Banks, University Of Nebraska, University of Thessaly, USAFIS, usafis.org, Voyager Mobile, w3schools.in, wafa.ps, West New York, WHMCS, whmcs.com, Wikileaks, Xception Code, you-r!-k@n

1-15 May 2012 Cyber Attacks Statistics

May 20, 2012 Paolo Passeri 2 comments

As I did in the last month, I have summarized the data collected in my Cyber Attacks Sample for the first half of May, (whose thumbnail is on the right), in order to provide some aggregated statistics. Collected Data have been summarized in three charts representing: Motivations Behind Attacks, Distribution of Targets and Distribution of Attack Techniques. Although the 60 attacks sample does not intend to be comprehensive (and hence the results must be taken with caution), the charts provide a quick overview, which in turn might be useful to identify trends and hopefully to address countermeasures. Apparently the trend is quite (un)stable with Cyber Crime, ranking at number one as the primary motivation for the attacks, and Governments that continue to be the preferred targets for cybercrookers.

As far as Motivations Behind Attacks are concerned, once again Cyber Crime ranks at number one with nearly the 70% of occurrences. Hacktivism is well behind with “only” the 23% followed by Cyber Warfare and Cyber Espionage that triggered singularly the 10% of attacks. If compared with April, the trend shows a growth of Cyber Crime and a corresponding reduction of hacktivism. As far as Cyber Espionage is concerned, particularly interesting om this month have been the Attack to U.K. Ministry Of Defence and to some undisclosed U.S. Natural Gas Companies.

The Distribution of Targets chart confirms that Governments continue to be the preferred targets for Cyber Criminals and Hacktivists with nearly one third (30%) of occurrences. With respect to April, targets belonging to educational sector have gained one position ranking at number two with the 15% of occurrences and before the LEAs which shifted at the third place with the 7% of occurrences. If we sum up military targets to LEAs we have the 12%. In any case the trend is in line with the previous month.

SQL Injection is the number one among Attack Techniques, with the 36% of occurrences taking over, at least in the first two weeks of may, Distributed Denial Of Service, that ranks at number two with the 18%. Summing up the “conclamated” SQLi Attacks with the “uncertain” SQLi Attacks, leads to the surprising result that nearly one attack on two (46%) has been performed exploiting this kind of vulnerability. So definitively run and patch your applications!

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011 and 2012 (regularly updated), and follow @paulsparrows on Twitter for the latest updates. Also feel free to submit at ppasseri@gmail.com details about Cyber attacks in order to make the timelines even more detailed and meaningful.

April 2012 Cyber Attacks Statistics (hackmageddon.com)
May 2012 Cyber Attacks Timeline (Part I) (hackmageddon.com)

Categories: Security Tags: 2012, Cyber Attacks, Cyber Attacks Timeline, Cyber Crime, Cyber Espionage, Cyberwarfare, Denial-of-service attack, Hacking, Hacktivism, May, SQL Injection, Statistics, Twitter

April 2012 Cyber Attacks Statistics

May 6, 2012 Paolo Passeri 2 comments

I have aggregated the data collected related to cyber attacks occurred in April 2012 (that you may find in the links on the right) in order to provide a consolidated view for the month. The statistics have been taken according to three parameters: Motivations Behind Attacks, Distribution of Targets and Distribution of Attack Techniques. Of course the information does not pretend to be exhaustive, in any case it is useful to provide a snapshot on the cyber landscape of the last month.

As far as the Motivations Behind Attacks are concerned, Cyber Crime ranks undoubtedly at number one with the 51% of the occurrences. Hacktivism is at number two with “only” the 39% of the occurrences. Other motivations such as Cyber Warfare or Cyber Espionage are far behind with respectively the 7 and 2 percent. This is not a surprise since attacks motivated by Cyber Espionage should be supposed to be subtle and hidden and this explains their rank (unlike the attacks motivated by hacktivism that use to attract the greatest attention by media).

As far as the Distribution Of Targets is concerned, Governements keep on to be preferred targets, with nearly one third of the occurrences. Law Enforcement Agencies rank at number two with 9% immediately followed by Educational Institutions with 7%. Online Platforms such as Online Games or other kind of platforms (such as email services) are behind with the 6% of occurrences for both of them. Of course the high position for governments and LEAs is quite simple to explain: both categories are the preferred targets for hactkivists.

A month characterized by Distributed Denial of Service, at least according to the Distribution of Attack Techniques chart. SQL Injection ranks at number two, immediately followed by Defacement. If we sum up also the indirect occurrences of SQLi (that is those cases whose symptoms seem the ones proper of SQLi but no direct evidences were found) the distribution of the two techniques is nearly the same (respectively 29% for DDoS and 27% for SQLi). Of course DDoS is the preferedd cyber weapon for hacktivists and this explain its dominion on this unwelcomed chart.

April Cyber Attacks Timeline (Part II) (hackmageddon.com)
April Cyber Attacks Timenile (Part I) (hackmageddon.com)

Categories: Security Tags: April, Cyber Attacks, Cyber Attacks Timeline, Cybercrime, Cyberwarfare, DDoS, Defacement, Denial-of-service attack, Hacktivism, Law enforcement agency, SQL Injection, SQLi, Statistics

April 2012 Cyber Attacks Timeline (Part II)

May 3, 2012 Paolo Passeri 2 comments

Here the first part covering the cyber attacks from 1 to 15 April.

April is over and here it is the second half of the Cyber Attacks Timeline covering the time period spanning from 16 to 30 april 2012.

The last two weeks of this month have been characterized by several remarkable events (at least for the newspapers), such as the #OpBahrain which unleashed a trail of attacks from the Anonymous against websites related to the Formula 1 GP in Bahrain. Other noticeable events triggered by hacktivism include several DDoS attacks against CIA, MI6, Department of Justice, and a couple of Law Enforcement Agencies which continue to be a preferred target for hackers.

On the Cyber Crime front (still the major apparent motivation for the attacks) this month reports, among the events, a breach to Nissan and other DDoS attacks against the District of Columbia, the State of Washington and Nasdaq (I would not define them just motivated by hacktivism). Other events include a couple of 0-day vulnerabilities targeting popular e-mail services and affecting potentially million of users.

Last but not least, April has brought a new cyber attack to Iran crude oil industry, despite, so far, there are no clear evidences of a new Stuxnet-like Cyber Attack. This is not the only episode targeting Iran which also suffered 3 million of banks accounts compromised.

For the chronicle I decided to insert in the timeline also the breach to the game publisher Cryptic Studios. Although it happened in 2010 (sic) it was discovered only few days ago…

Categories: Cyber Attacks Timeline, Security Tags: #OpAap, #OpBahrain, #OpTrialAtHome, @5orrow, @EvilSecurity, @Havittaja, Account Hijacking, Al Arabiya, AlQaedaSec, Andy Palmer, Anonymous, AOL Mail, Bahrain, Berrien County Sheriff's Department, boxun.com, California State University San Marcos, CIA, CoD3X, Cryptic Studios, CsGameServers, Cyber Attacks Timeline, Cyber Crime, Cyberwarfare, dc.gov, Defacement, Denial-of-service attack, Department of Justice, District of Columbia, DOJ, El Emara, f1-racers.net, Formula 1, French Minister of Budget, Government, Greece's Finance Ministry, Hacksoft, Hotmail, International Police Association, IPA, Iran, Khosrow Zarefarid, La Nueva Casa de Amigos Eye Clinic, Lake County Sheriff's Office, Law enforcement agency, LCSO.org, LEA, Lebanon, live-timing.formula1.com, LulzSec Peru, Matt Weaver, MI6, NASA, Nasdaq, Nissan, Noticaribe, nyc.gov, palermo.edu, Pastie.org, Political Economy Research Institute, Raise Your Voice, SQL Injection, SQLi, Stichting Brein, Stuxnet, SweDreamz.com, Team Dig7tal, Team GhostShell, Texas Department of Transportation, Three Rivers Park District, Trinidad and Tobago, Twitter, Two Plus Two, UGNazi, UK2.NET, University of Arkansas, University of Houston College of Optometry, University of Massachusetts, University of Palermo, wa.gov, Yahoo!, Zscaler

Older Entries

About these ads

May 2013
M	T	W	T	F	S	S
« Apr
	1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

Twitter

RT @marco_cova: IE8 0-day exploit (CVE-2013-1347) analyzed on Wepawet: bit.ly/13IZs2E - 17 hours ago
RT @jc_vazquez: Vista Equity Partners to Buy Websense #News #InfoSec on.wsj.com/13BfWaw via @WSJ - 2 days ago
Pentagon OKs Androids, BlackBerrys for soldiers nakedsecurity.sophos.com/2013/05/07/pen… - 3 days ago
April 2013 Cyber Attacks Statistics wp.me/p14J6X-2oX - 3 days ago
RT @LastlineLabs: Marco Cova from Lastline talking about hacktivism on Italian TV ow.ly/l8Az6 - 4 days ago
RT @lastlineinc: Malware can make itself invisible: in the case of RSA security's breach, malware went undetected for 1/2 year http://t.co/… - 5 days ago
RT @gianlucaSB: SMS-based command and control protocols are here ow.ly/l47Ye - 1 week ago
Skype with care Microsoft is reading everything you write h-online.com/security/news/… - 1 week ago
How the Syrian Electronic Army Hacked The Onion - Onion Inc.'s Tech Blog theonion.github.com/blog/2013/05/0… - 1 week ago
@Xyri3 sorry I forgot :) Done! - 1 week ago

Follow @paulsparrows

Hackmageddon.com

Archive

1-15 April 2013 Cyber Attacks Timeline

1-15 March 2013 Cyber Attacks Timeline

16-31 January 2013 Cyber Attacks Timeline

I am Terribly Late!

May 2012 Cyber Attacks Statistics

1-15 May 2012 Cyber Attacks Statistics

April 2012 Cyber Attacks Statistics

April 2012 Cyber Attacks Timeline (Part II)

About The Author

Stats

Support My Work!

Share:

Stay Tuned!

Interesting Links

News

About This Blog

Calendar

Archive

Tag

Recent Posts

Top Posts & Pages

Visitors from…

Twitter

Follow “Hackmageddon.com”

Archive

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Related articles

Share:

Like this:

Related articles

Share:

Like this:

Share:

Like this:

About The Author

Stats

Support My Work!

Share:

Stay Tuned!

Interesting Links

News

About This Blog

Calendar

Archive

Tag

Recent Posts

Top Posts & Pages

Visitors from…

Follow “Hackmageddon.com”