1-15 August 2017 Cyber Attacks Timeline
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

View only
 
ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
IDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags
2
101/08/2017?
University of California Los Angeles
UCLA reports a cyberattack against a Summer Sessions & International Education Office server that contains personal information provided by students. The attack happened on May 18 and affects potentially up to 32,000 students.
UnknownEducationCCUS
https://www.it.ucla.edu/security/ss-ieo
UCLA, University of California Los Angeles
3
201/08/2017?
Chinese Telecom Firm
The Kaspersky Lab Q2 2017 DDoS Intelligence Report reveals the details of a DDoS attack launched against a Chinese Telecom Firm, lasting for 11 days.
DDoS
Industry: Telco
CCCN
https://www.hackread.com/chinese-telecom-firm-suffered-massive-ddos-attacks-for-11-days/
Kaspersky Lab
4
301/08/2017?
Single Individuals
Malware researcher Jakub Kroustek from Avast discovers an anti-Israel & pro-Palestinian data wiper dubbed IsraBye.
Malware
Single Individuals
CCIL
http://securityaffairs.co/wordpress/61961/malware/israbye-wiper.html
Jakub Kroustek, Avast, IsraBye
5
401/08/2017?
Big Screen in Cardiff's Queen Street
A big screen in Cardiff’s main shopping street, Queen Street, is reportedly hacked with images of swastikas and messages about ‘Shariah’ appearing.
UnknownBillboardCCUK
http://www.walesonline.co.uk/news/wales-news/big-screen-cardiffs-main-shopping-13420039
Cardiff, billboard, Queen Street
6
501/08/2017?
Users of Node.js
A two-week-old campaign to steal developers' credentials using malicious code distributed through npm, the Node.js package management registry, is halted with the removal of 39 malicious npm packages.
Malware via Typosquatting
Single Individuals
CC>1
https://www.theregister.co.uk/2017/08/02/typosquatting_npm/
Node.js, npm
7
601/08/2017?
Kaleida Health
Kaleida Health notifies 2,789 patients about a phishing incident happened on May 24.
Account Hijacking
HealthcareCCUS
https://www.databreaches.net/ny-kaleida-health-notifies-2789-patients-about-phishing-incident/
Kaleida Health
8
702/08/2017?
Chrome Web Store Account for Web Developer
The Chrome Web Store Account for Web Developer, a popular extension, is compromised via a phishing trick, and pushes adware to millions.
Account Hijacking
Single Individuals
CCUS
https://arstechnica.com/information-technology/2017/08/after-phishing-attacks-chrome-extensions-push-adware-to-millions/
Chrome Web Store Account for Web Developer, Chris Pederick
9
803/08/2017Ne0-H4ck3r
Pakistan.gov.pk
An Indian hacker going by the online handle of Ne0-H4ck3r defaces the official government portal of Pakistan (Pakistan.gov.pk), leaving a deface page along with a message and a patriotic Indian song.
DefacementGovernmentCWPK
https://www.hackread.com/pakistani-govt-portal-hacked-to-play-indian-national-anthem/
Ne0-H4ck3r, Pakistan.gov.pk
10
904/08/2017?
Ariana Grande Instagram account
Ariana Grande is the latest celebrity that gets hacked. This time her Instagram account is hacked.
Account Hijacking
Single Individuals
CCUS
http://www.clevver.com/ariana-grande-instagram-hacked/
Ariana Grande, Instagram
11
1006/08/2017?
Surgical Dermatology Group
Surgical Dermatology Group notifies patients after its cloud hosting and server management provider TekLinks discovers a security breach dating back to March 23, 2017.
UnknownHealthcareCCUS
https://www.databreaches.net/surgical-dermatology-group-notifies-patients-after-teklinks-hacked/
Surgical Dermatology Group, TekLinks
12
1107/08/2017?
Ukrposhta (Ukraine National Postal Service)
The website for Ukraine's national postal service Ukrposhta was recently taken down by DDoS attacks for two days in a row, Interfax reports.
DDoSGovernmentCCUA
http://en.interfax.com.ua/news/general/441141.html
Ukrposhta
13
1207/08/2017?
Steve Weichert Twitter Account
Steve Weichert, a politician running for District 17’s State Senate Seat in the 2018 election reveals that his Twitter account has been hacked. The alleged attackers post pornographic content.
Account Hijacking
Single Individuals
CCUS
http://www.abc15.com/news/region-southeast-valley/chandler/senate-candidate-says-his-phone-was-hacked-tweeting-out-pornographic-images
Steve Weichert, Twitter
14
1307/08/2017
The Binary Guardians
About 40 Venezuelan websites including those of the government, the Supreme Court and the legislature.
A hacking collective called The Binary Guardians defaces roughly 40 Venezuelan websites including those of the government, the Supreme Court and the legislature.
DefacementGovernmentHVE
http://www.ibtimes.co.uk/our-struggle-digital-hackers-open-about-attacks-venezuelan-government-websites-1634050
he Binary Guardians
15
1407/08/2017?
Russian Speaking Enterprises
Trend Micro reveals the details of a malicious email campaign against Russian-speaking enterprises, employing a combination of exploits and Windows components to deliver a new backdoor leveraging CVE-2017-0199.
Targeted Attack
Industry: >1CERU
http://blog.trendmicro.com/trendlabs-security-intelligence/backdoor-carrying-emails-set-sights-on-russian-speaking-businesses/
Trend Micro, CVE-2017-0199.
16
1507/08/2017
Turkish hackers
Several Armenian Websites
Turkish hackers continue to target Armenian websites. The list of the targets involved in the latest spree of attacks includes the official website of the Development Foundation of Armenia and the official website of the Civil Service Council of Armenia.
UnknownGovernmentCWAM
https://armenpress.am/eng/news/901015/
Turkey, Armenia, Development Foundation of Armenia, Civil Service Council of Armenia
17
1608/08/2017?
Several North Korean Organizations
Researchers from Cylance reveal that North Korean organisations are being increasingly targeted by an unknown hacker group, using the Konni malware, a remote access trojan (RAT). In 2017 alone, three separate campaigns targeting North Korean organisations have been spotted.
Malware (Konni)
>1CWKP
http://www.ibtimes.co.uk/hackers-target-north-korea-konni-malware-right-after-pyongyangs-latest-icbm-test-1634257
North Korea, Cylance, Konni
18
1708/08/2017?
Three major banks in Hungary
The National Bank of Hungary reveals that hackers have been targeting three major banks in Hungary with a slew of phishing attempts.
Account Hijacking
FinanceCCHU
http://www.ibtimes.co.uk/hackers-have-been-targeting-3-major-hungarian-banks-series-phishing-attacks-since-june-1634177
National Bank of Hungary
19
1809/08/2017?
Corporations in Brazil and Saudi Arabia
Researchers at Kaspersky Lab reveal that a new run of Mamba infections have been spotted again in Brazil and Saudi Arabia.
Malware>1CCBR
SA
https://securelist.com/the-return-of-mamba-ransomware/79403/
Kaspersky Lab, Mamba, Brazil, Saudi Arabia
20
1909/08/2017?
Kenya Electoral Commission IT System
Kenya opposition presidential candidate Raila Odinga claims the electoral commission's IT system has been hacked to manipulate the election results.
Account Hijacking
GovernmentCCKE
http://www.bbc.com/news/world-africa-40872778
Raila Odinga
21
2011/08/2017APT28
Hotel Wi-Fi Users
Researchers from FireEye reveal that APT28 AKA Fancy Bear have been using the infamous Eternal Blue vulnerability in a campaign that targeted people of interest as they connected to hotel Wi-Fi networks.
Targeted Attack
>1CE>1
https://arstechnica.com/information-technology/2017/08/dnc-hackers-from-russia-used-nsa-developed-attack-code-in-attack-on-hotels/
FireEye, APT28, Fancy Bear, Eternal Blue
22
2111/08/2017?
Single Individuals
SophosLabs warn of a fresh spike of attacks due to new variants of the well known Emotet malware.
Malware
Single Individuals
CC>1
https://community.sophos.com/kb/en-us/127218
SophosLabs, Emotet
23
2212/08/2017Anonymous
Official website of Charlottesville
The Anonymous claim responsibility for carrying out a DDoS attack on the official website of Charlottesville city Virginia. The attack is conducted under the banner of #OpDomesticTerrorism
DDoSGovernmentHUS
https://www.hackread.com/anonymous-shut-down-charlottesville-city-website/
Anonymous, Charlottesville, #OpDomesticTerrorism
24
2312/08/2017
Unknown Iraqi developer
Android users
Researchers from mobile security firm Lookout say they found at least three Android apps on the Google Play Store containing a form of advanced spyware they believe was created by an Iraqi developer. The malware author modified a version of the official Telegram app.
Malware
Single Individuals
CC>1
https://www.bleepingcomputer.com/news/security/spyware-apps-found-on-google-play-store/
Android, Play Store, Google, Telegram, Lookout
25
2413/08/2017?
Blizzard Entertainment
The web servers of Blizzard Entertainment suffer a series of massive distributed denial-of-service (DDoS) attacks
DDoS
Industry: Video Games
CCUS
https://www.hackread.com/blizzard-entertainment-hit-by-massive-ddos-attack/
Blizzard Entertainment
26
2514/08/201731337FireEye
A group of hackers called 31337 leaks a second dump of data allegedly stolen from security company FireEye.
Account Hijacking
Industry: Information Security
CCUS
https://motherboard.vice.com/en_us/article/3kkq5w/hackers-mock-cybersecurity-firm-fireeye-with-second-data-dump
FireEye, 31337
27
2614/08/2017
The Lazarus Group
Individuals involved with US Defense Contractors
Researchers from Palo Alto Networks reveal the details of a new operation carried on by the North Korea-linked Lazarus Group against individuals involved with US Defense Contractors.
Targeted Attack
Industry: US Defense Contractor
CEUS
https://researchcenter.paloaltonetworks.com/2017/08/unit42-blockbuster-saga-continues/
Palo Alto Networks, Lazarus Group
28
2714/08/2017?
7 Chrome Extensions
Researchers from ProofPoint reveal that seven additional Chrome Extensions have been compromised after their author’s Google Account credentials were stolen via a phishing scheme.
Account Hijacking
Single Individuals
CC>1
https://www.proofpoint.com/us/threat-insight/post/threat-actor-goes-chrome-extension-hijacking-spree
Chrome, ProofPoint
29
2815/08/2017
? (Chinese Attackers)
NetSarang
Researchers at Kaspersky Lab find a well-hidden backdoor in NetSarang's server management software. It is assumed someone (allegedly from China) managed to hack into NetSarang's operations and silently insert the backdoor ShadowPad.
Malware
Industry: Software
CEKR
https://www.theregister.co.uk/2017/08/15/netsarang_software_backdoor/
NetSarang, Kaspersky Lab
30
2915/08/2017?
Scottish Parliament
Officials reveal that the Scottish Parliament has been targeted by a "brute force" cyber attack. The attack, from "external sources", was similar to that which affected Westminster in June.
Brute ForceGovernmentCEUK
http://www.bbc.com/news/uk-scotland-scotland-politics-40941722
Scottish Parliament
31
3015//08/2017
Unnamed Nigerian criminal
4,000 organizations worldwide
Researchers from Check Point reveal the details of an operation targeting 4,000 organizations worldwide, carried on by an unnamed Nigerian criminal under the motto "Get Rich or Try Dying".
Malware>1CC>1
http://blog.checkpoint.com/2017/08/15/get-rich-die-trying-case-study-real-identity-behind-wave-cyberattacks-energy-mining-infrastructure-companies/
Check Point, Get Rich or Try Dying
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
Loading...