This awful infosec July is over, and finally we can sum up the Cyber Attacks reported during this month. I collected all the available information and inserted it inside the following chart. Where possible (that is enough information available) I tried to estimate the cost of the attacks using the indications from the Ponemon’s insitute according to which the average cost of a Data Breach is US $214 for each compromised record. The total sum (for the known attacks) is around $7.6 billion, mainly due to the “National Data Breach” of the South Korean Social Network Cyworld.
Approximately 16 attacks were directly or indirectly related to Antisec or Anonymous, they promised an hot summer and unfortunately are keeping their word…
Useful resources for compiling the (very long) chart were taken from:
- 2011 Cyber Attacks (and Cyber Costs) Timeline (Updated) (paulsparrows.wordpress.com)
- 2011 CyberAttacks Timeline (paulsparrows.wordpress.com)
- 50 Days of Hunt (paulsparrows.wordpress.com)
- LulzSec hacking: a timeline (telegraph.co.uk)
- Anonymous Denies Paternity For the CNAIPIC Hack (paulsparrows.wordpress.com)
This sunny July morning begins with another resounding hacking notification.
This time is Lady Gaga’s turn, whose U.K. Web Site, according to Daily Mirror, has been hacked and thousands of her fans’ personal details consequently stolen during the attack and made public.
The attack has been performed by the Hacker Group Swagsec, on June 27, but was made public only this week. The reasons are probably related to the claims according to which she uses the gay community to sell records.
Universal said yesterday:
“The hackers took a content database dump from http://www.ladygaga.co.uk and a section of email, first name and last name records were accessed. There were no passwords or financial information taken.
“We take this very seriously and have put in place additional measures to protect personally identifiable information. All those affected have been advised.”
SwagSec have also targeted other Universal artists recently including Amy Winehouse and Justin Bieber.
In an unrelated incident, an 18-year-old German hacker who leaked tracks by Gaga in 2009 was recently jailed for 18 months.
I must confess that these vacations are proving to be very interesting from my information security professional perspective. In the last weeks. each night I go to sleep wondering what further data breach will be notified the morning after… (un)luckily my expectations have almost never been unattended…