16-31 December 2016 Cyber Attacks Timeline
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

 
View only
 
 
Still loading...
ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
IDDateAuthorTargetDescriptionAttackTarget
Class
Attack
Class
CountryLinkTags
2
114/12/2016PROMETHIUM and NEODYMIUM APTsSingle Individuals in EuropeMicrosoft reveals the details of two APTs (PROMETHIUM and NEODYMIUM) targeting single individuals to obtain intellectual property and other data.Targeted AttackSingle IndividualsCEEUhttps://blogs.technet.microsoft.com/mmpc/2016/12/14/twin-zero-day-attacks-promethium-and-neodymium-target-individuals-in-europe/PROMETHIUM, NEODYMIUM, Microsoft
3
214/12/2016Cryptolulz666Russian Embassy of Armenia (embassyru.am)Cryptolulz666 breaks into the database of the website of Russian Embassy of Armenia (embassyru.am) and leaks the corresponding data.SQLiGovernmentCCAMhttp://securityaffairs.co/wordpress/54393/hacking/russian-embassy-of-armenia-hacked.htmlCryptolulz666, Russian Embassy of Armenia, embassyru.am
4
315/12/2016?PayAsUGymFitness website PayAsUGym confirms one of its servers has been hacked and acknowledges that 300,000 email addresses and passwords of its members has been accessedUnknownIndustry: Fitness NetworkCCGBhttp://www.bbc.com/news/technology-38350987PayAsUGym
5
415/12/2016?Summit Reinsurance Services Inc.Personal Information about 1000 Black Hawk College employees and their dependents could have been compromised in a hack of Summit Reinsurance Services Inc., a former insurance provider's server.MalwareIndustry: Insurance ServicesCCUShttps://www.databreaches.net/il-security-breach-could-affect-black-hawk-college-employees/Summit Reinsurance Services Inc., Black Hawk College
6
516/12/2016?Home RoutersA new wave of attacks using DNSChanger targets a set of vulnerable home routers.Malware (DNSChanger)Single IndividualsCC>1http://arstechnica.com/security/2016/12/home-routers-under-attack-in-ongoing-malvertisement-blitz/DNSCHanger
7
616/12/2016?AkbankNews emerges that hackers targeted Turkey's Akbank via the SWIFT global money transfer system in an attack which the bank said had not compromised customer data but would cost it up to $4 million.Targeted AttackFinanceCCTRhttp://www.reuters.com/article/us-akbank-cyber-idUSKBN1450MCAkbank
8
716/12/2016?Bleacher ReportBleacher Report reports that an unauthorized user gained access to user information for its website and mobile app.UnknownNewsCCUShttps://support.bleacherreport.com/hc/en-us/articles/236116607-Important-Notice-to-All-Bleacher-Report-UsersBleacher Report
9
816/12/2016Cryptolulz666italiastartupvisa.mise.gov.itCryptolulz666 takes down the website of italiastartupvisa.mise.gov.it.DDoSGovernmentCCIThttp://securityaffairs.co/wordpress/54459/hacking/cryptolulz666-ddos.htmlCryptolulz666, italiastartupvisa.mise.gov.it
10
916/12/2016Cryptolulz666Russian Federal Drug Control Service Liquidation Commission (fskn.gov.ru)Cryptolulz666 takes down the website of the Russian Federal Drug Control Service Liquidation Commission (fskn.gov.ru)DDoSGovernmentCCRUhttp://securityaffairs.co/wordpress/54459/hacking/cryptolulz666-ddos.htmlCryptolulz666, Russian Federal Drug Control Service Liquidation Commission, fskn.gov.ru
11
1016/12/2016Phantom SquadEA Battlefield 1The Phantom Squad Collective takes down the servers of EA Battlefield 1.DDoSIndustry: Video GamesCCUShttps://www.hackread.com/you-are-not-alone-ea-servers-are-down/Phantom Squad, EA Battlefield 1
12
1117/12/2016?Lynda.comLinkedIn's online learning unit Lynda.com notifies its 9.5 million users of an unauthorised database breach that contained the contact information and courses viewed of around 55,000 users. The company confirms the hack and says it has reset the passwords for all 55,000 accounts as a precautionary measure.UnknownIndustry: Online LearningCCUShttp://www.ibtimes.co.uk/linkedins-online-learning-platform-lynda-com-suffers-data-breach-affecting-55000-accounts-1597180Lynda.com
13
1217/12/2016AnonymousThai Police OfficeThe Anonymous take down the website of the Thai Police Office following the endorsement of its controversial new Computer Crime Bill.DDoSLaw EnforcementHTHhttps://www.bleepingcomputer.com/news/government/thai-police-arrests-nine-anonymous-hackers-for-role-in-opsinglegateway-attacks/Anonymous, Thai Police Office, Computer Crime
14
1317/12/2016The Dark OverlordPrecon ProductsThe Dark Overlord leaks some data from Precon Products including the alleged video of an accident and the Operation Manager's iPhone data.UnknownIndustry; ContstructionCCUShttps://www.databreaches.net/thedarkoverlord-reveals-three-more-attacks-with-more-to-be-revealed/The Dark Overlord, Precon Products
15
1418/12/2016Kelvin OnaghinorLos Angeles CountyKelvin Onaghinor, a Nigerian national is charged in connection with a hack of Los Angeles County emails that might have exposed personal data from more than 750,000 people who had business with county departments.Account HijackingGovernmentCCUShttps://www.theguardian.com/us-news/2016/dec/18/los-angeles-county-email-hack-kelvin-onaghinorKelvin Onaghinor, Los Angeles County
16
1519/12/2016AnonymousThai Ministry of Information and Communication Technology and the Ministry of DefenceThe Anonymous take down the websites of the Ministry of Information and Communication Technology and the Ministry of Defence.DDoSGovernmentHTHhttp://www.ibtimes.co.uk/hackers-hit-thai-government-ddos-attacks-protesting-against-restrictive-internet-law-1597339Anonymous, Computer Crime Bill, Thai Ministry of Information and Communication Technology, Ministry of Defence
17
1619/12/2016KapustkiySlovak Chamber of Commerce, scci.skKapustkiy breaches the Slovak Chamber of Commerce (www.scci.sk) and accesses the data of more than 4,000 users.SQLiOrg: Chamber of CommerceCCSKhttp://securityaffairs.co/wordpress/54550/data-breach/slovak-chamber-commerce-hacked.htmlKapustkiy, Slovak Chamber of Commerce, scci.sk
18
1719/12/2016Cryptolulz666Indian Institute of Technology Kharagpur (iitkgp.ac.in)Cryptolulz666 hacks the database of the Indian Institute of Technology Kharagpur, the second of the country and leaks a part of the 12,000 users.SQLiEducationCCINhttp://securityaffairs.co/wordpress/54526/data-breach/indian-institute-of-technology-kharagpur-hacked.htmlCryptolulz666, Indian Institute of Technology Kharagpur, iitkgp.ac.in
19
1819/12/2016?EthereumAdministrators of the Ethereum Project say the platform incurred a breach affecting more than 16,500 users. The attacker used social engineering to gain access to a mobile phone number which allowed them to gain access to other accounts and ultimately compromise usernames, email addresses, profile data, public and private messages, and hashed passwords.Account HijackingDigital CurrencyCCN/Ahttps://www.scmagazine.com/bo-shens-hacker-strikes-again-in-ethereum-cryptocurrency-breach/article/580288/Ethereum
20
1920/12/2016?Drudge ReportMatt Drudge, the founder of popular conservative news aggregation website Drudge Report has claimed the US government may be responsible for launching an unprecedented cyberattack against his publication that caused a 90 minute outage.DDoSNews AggregationsCCUShttp://www.ibtimes.co.uk/did-us-government-launch-huge-ddos-attack-against-drudge-report-1598680Matt Drudge, Drudge Report
21
2020/12/2016?Bleacher ReportBleacher Report reports that an unauthorized user gained access to user information for its website and mobile app.UnknownNewsCCUS
22
2120/12/2016OurMineOfficial Twitter account of Netflix US (@netflix)OurMine hackers strike again and take down the official Twitter accounts of Netflix US (@netflix)Account HijackingIndustry: EntertainmentCCUShttp://www.ibtimes.co.uk/ourmine-hackers-strike-again-taking-down-netflix-marvel-nfl-twitter-accounts-1597694OurMine, @netflix
23
2220/12/2016Team Pak Cyber AttackersOfficial Google Bangladesh Domain (google.bd)A group of Pakistani hackers going by the online handle of Team Pak Cyber Attackers deface the official Google Bangladesh domain. The group left a deface page along with a message on the targeted domain taunting security measures implemented by Google.DNS HjiackingIndustry: Internet ServicesCCBDhttps://www.hackread.com/pakistani-hackers-deface-google-bangladesh-domain/Team Pak Cyber Attackers, google.bd
24
2320/12/2016?Kiev's Power GridUkraine investigates a suspected cyber attack on Kiev's power grid at the weekend, the latest in a series of strikes on its energy and financial infrastructureTargeted AttackUtility: EnergyCWUAhttp://www.reuters.com/article/us-ukraine-crisis-cyber-attacks-idUSKBN1491ZFKiev's Power Grid
25
2420/12/2016?University of Nebraska-Lincoln (UNL)In a letter sent to approximately 30,000 current and former students, UNL says that an unauthorized breach of a server hosting a math placement exam occurred sometime in the last two years.UnknownEducationCCUShttp://journalstar.com/news/local/education/unl-warns-students-of-potential-server-breach/article_e8439e8f-6a53-5d4a-ad39-9a8312a83ce5.htmlUniversity of Nebraska-Lincoln, UNL
26
2520/12/2016?Kia
Hyundai
Ynet News report that Dozens of brand new luxury Kia and Hyundai vehicles were stolen in the Jerusalem area after criminals were able to hack into company servers and obtain data on the cars; three east Jerusalem residents have been arrested.UnknownIndustry: AutomotiveCCILhttp://www.ynetnews.com/articles/0,7340,L-4895716,00.htmlKia, Hyundai, Ynet News
27
2621/12/2016OurMineOfficial Twitter account of Marvel (@Marvel)OurMine hackers strike again and take down the Twitter accounts of Marvel (@Marvel) and other official super heros accounts linked via Tweetdeck.Account HijackingIndustry: EntertainmentCCUShttp://www.ibtimes.co.uk/ourmine-hackers-strike-again-taking-down-netflix-marvel-nfl-twitter-accounts-1597694OurMine, @Marvel
28
2721/12/2016OurMineOfficial Twitter account of NFL (@NFL)OurMine hackers take down the Twitter account of NFL (@NFL).Account HijackingOrg: SportCCUShttps://techcrunch.com/2016/12/21/ourmine-hacks-netflixs-u-s-twitter-account/OurMine, @NFL
29
2821/12/2016?Columbia County School DistrictColumbia County School District in Georgia is hit by a breach that compromised personal data, including Social Security numbers, of staff.UnknownEducationCCUShttp://www.wrdw.com/content/news/Possible-data-breach-affects-Columbia-County-School-district-employees-407785575.htmlColumbia County School District
30
2921/12/2016?Columbia County School DistrictThe Columbia County School District reveals that one of their servers suffered a data breach. The attack happened on November 28th.UnknownEducationCCUShttps://www.databreaches.net/ga-columbia-county-schools-victim-of-data-breach/Columbia County School District
31
3022/12/2016Russia?LithuaniaThe Baltic state of Lithuania, on the frontline of growing tensions between the West and Russia, says the Kremlin is responsible for cyber attacks that have hit government computers over the last two years.Targeted AttackGovernmentCELThttp://www.reuters.com/article/us-lithuania-cyber-idUSKBN14B1PCLithuania, Russia
32
3122/12/2016Phantom Squad and @cripthepoodleSteam and Origin ServersThe DDoS attackers from Phantom Squad have claimed responsibility for conducting a series of powerful Distributed Denial of Service (DDoS) on Steam and online gaming platform Origin servers.DDoSIndustry: Video GamesCCUShttps://www.hackread.com/steam-origin-servers-down-by-phantom-squad-poodlecorp/Phantom Squad, @cripthepoodle, Steam, Origin
33
3222/12/2016KapustkiyCosta Rica Embassy in China (costaricaembassycn.com)Kapustkiy hacks the Costa Rica Embassy in China (costaricaembassycn.com) and dumps 50 of the 280 login credentials.SQLiGovernmentCCCNhttp://securityaffairs.co/wordpress/54641/data-breach/cn-costa-rica-embassy-hacked.htmlKapustkiy, Costa Rica Embassy in China, costaricaembassycn.com
34
3322/12/2016CyberZeistfbi.govCyberZeist exploits a zero-day vulnerability in the Plone Content Management System (CMS) of the FBI’s website, and leaks some of the information to Pastebin.Unknown 0Day vulnerabilityGovernmentCCUShttps://www.rt.com/usa/372701-cyberzeist-hacker-breaches-fbi-second-time/CyberZeist, fbi.gov
35
3422/12/2016R.I.U. Star PatrolTumblrTumblr goes down for over two hours as a result of a large-scale DDoS attack.DDoSSocial NetworkCCUShttp://mashable.com/2016/12/21/is-tumblr-down-ddos-attack/#PW7EYkL1GPqLTumblr, R.I.U. Star Patrol
36
3522/12/2016AnonymousThai Ministry of Foreign AffairsIn name of #OpSingleGateway, the Anonymous hack the Thai Ministry of Foreign Affairs and dump more than 3,000 employees' records.UnknownGovernmentHTHhttps://www.hackread.com/anonymous-hacks-thailand-navy-foreign-affairs/Anonymous, #OpSingleGateway, Thai Ministry of Foreign Affairs
37
3622/12/2016AnonymousThai NavyAs part of the same operation the Anonymous hack the Thai Navy.UnknownMilitaryHTHhttps://www.hackread.com/anonymous-hacks-thailand-navy-foreign-affairs/Anonymous, #OpSingleGateway, Thai Navy
38
3723/12/2016Fancy Bear (APT28)Ukrainian Artillery UnitsFancy Bear, the hacker group previously linked to the Russian Military Intelligence (GRU), is believed to have deployed malware on Android devices to track and target Ukrainian artillery units over the past two years.Targeted AttackMilitaryCEUAhttp://www.ibtimes.co.uk/russian-hackers-deployed-android-malware-track-target-ukrainian-artillery-units-1597834Fancy Bear, APT28, Ukrainian Artillery Units,
39
3823/12/2016AnonymousMinistry of Tourism and SportsThe Anonymous take down the website of the Thai Ministry of Tourism and Sports.DDoSGovernmentHTHhttps://www.bleepingcomputer.com/news/government/thai-police-arrests-nine-anonymous-hackers-for-role-in-opsinglegateway-attacks/Anonymous, Thai Ministry of Tourism and Sports, Computer Crime
40
3923/12/2016?Owners of Barnes & Noble’s NOOKBarnes & Noble’s NOOK is the latest device infected with malware and sending user data to China.MalwareSingle IndividualsCCUShttp://news.softpedia.com/news/barnes-noble-s-nook-infected-with-malware-sending-user-data-to-china-511258.shtmlhttp://news.softpedia.com/news/barnes-noble-s-nook-infected-with-malware-sending-user-data-to-china-511258.shtml
41
4024/12/2016Cryptolulz666 and EvoIsGodThe Standard Hong Kong (thestandard.com.hk)The two hackers Cryptolulz666 and EvoIsGod break into The Standard Hong Kong (thestandard.com.hk) and leak a portion of around 12000 users contained in the database.SQLiNewsCCHKhttp://securityaffairs.co/wordpress/54696/data-breach/standard-hong-kong-hacked.htmlCryptolulz666, EvoIsGod, The Standard Hong Kong, thestandard.com.hk
42
4125/12/2016KapustkiyRussian Visa Center in the US (ils-us.com)Kapustkiy hacks the Russian Visa Center in the US and accesses information of around 3000 individuals.SQLiGovernmentCCUShttp://securityaffairs.co/wordpress/54709/hacking/russian-visa-center-hacked.htmlKapustkiy, ils-us.com, Russian Visa Center in the US
43
4225/12/2016Kapustkiy and Cryptolulz666Dutch Chamber of Commerce in Hong Kong (dutchchamber.hk)The hacker Cryptolulz666, with a little help from the colleague Kapustkiy, break into the website of the Dutch Chamber of Commerce in Hong Kong (http://www.dutchchamber.hk/) and leak the data of around 200 users.SQLiOrg: Chamber of CommerceCCHKhttp://securityaffairs.co/wordpress/54726/data-breach/dutch-chamber-of-commerce-hacked.htmlKapustkiy, Cryptolulz666, Dutch Chamber of Commerce in Hong Kong, dutchchamber.hk
44
4325/12/2016The Dark OverlordDRI Title & Escrow DRI Title & EscrowThe Dark Overlord claims to have hacked DRI Title & Escrow and leaks some internal data.UnknownIndustry: Financial ServicesCCUShttps://www.databreaches.net/thedarkoverlord-reveals-three-more-attacks-with-more-to-be-revealed/DRI Title & Escrow DRI Title & Escrow, The Dark Overlord
45
4425/12/2016The Dark OverlordGS Polymers, Inc.The Dark Overlord claims to have hacked GS Polymers, Inc. and leaks some internal data.UnknownIndustry: Polymers ManufacturingCCUShttps://www.databreaches.net/thedarkoverlord-reveals-three-more-attacks-with-more-to-be-revealed/GS Polymers, Inc., The Dark Overlord
46
4526/12/2016?PakWheelsPakWheels, a famous automotive website in Pakistan reveals that their server was breached by an unknown third party exposing personal data of potentially 674,775 registered users. The breach happened in October 2016 exploiting a known vulnerability in outdated vBulletin forum software.vBulletin vulnerabilityOnline ServicesCCPKhttps://www.hackread.com/pakistan-largest-automotive-portal-pakwheels-hacked/PakWheels
47
4626/12/2016OurMineOfficial Sony Music Global Twitter Account (@SonyMusicGlobal)OurMine hack the Official Sony Music Global Twitter account (@SonyMusicGlobal) and Britney Spears joined the ranks of celebrities who have briefly died on the internetAccount HijackingIndustry: EntertainmentCCUShttp://mashable.com/2016/12/26/ourmine-hack-debunk-britney-spears-tweet-sony/#uRQqz8AeFaqBOfficial Sony Music Global Twitter Account, @SonyMusicGlobal, OurMine, Britney Spears
48
4727/12/2016AnonymousThai LA consulate (thaiconsulatela.org)Anonymous hacks the official website of Thai LA consulate (thaiconsulatela.org) and defaces its homepage with a brief message against the arrest of 9 suspects. The group also leaks the data of 900 records.DefacementGovernmentCCUShttps://www.hackread.com/anonymous-hacks-thai-consulate-against-cyber-law/Anonymous, Thai LA consulate, thaiconsulatela.org
49
4828/12/2016Fancy Bear (APT28)?OSCE (Organization for Security and Co-operation in Europe)The Organization for Security and Co-operation in Europe has recently confirmed a successful hack attack that occurred in November and which was launched by what are believed to be Russian hackers.Targeted AttackOrg: IntergovernmentalCEEUhttp://news.softpedia.com/news/europe-s-osce-hacked-russia-s-fancy-bears-possibly-involved-511371.shtmlOSCE, Organization for Security and Co-operation in Europe, Fancy Bear, APT28
50
4928/12/2016?ExtraTorrentExtraTorrent, one of the largest torrent sites on the internet suffered several major DDoS (Distributed Denial of Service) attacks over the past few days primarily because the site recently banned 'unofficial' proxy services.DDoSBit TorrentCCUShttp://www.ibtimes.co.uk/extratorrent-hit-by-ddos-attacks-after-it-banned-unofficial-proxy-services-1598287ExtraTorrent
51
5028/12/2016?Intercontinental Hotel Group (IHG)InterContinental Hotels Group (IHG), the parent company for more than 5,000 hotels worldwide including Holiday Inn, says it is investigating claims of a possible credit card breach at some U.S. locations.PoS MalwareIndustry: Hotel and HospitalityCCUShttps://krebsonsecurity.com/2016/12/holiday-inn-parent-ihg-probes-breach-claims/Intercontinental Hotel Group, IHG
52
5128/12/2016?State's Division of Public Behavioral Health (DPBH)The state's Division of Public Behavioral Health (DPBH) said it is investigating a compromise of its Medical Marijuana Program databaseUnknownGovernmentCCUShttps://www.scmagazine.com/medical-marijuana-site-breached/article/628571/State's Division of Public Behavioral Health, DPBH
53
5228/12/2016?Southcentral Foundation (southcentralfoundation.com)Southcentral Foundation (SCF) in Alaska notifies 14,719 individuals after two employees’ email accounts containing protected health information were hacked in October.Account HijackingHealthcareCCUShttps://www.databreaches.net/southcentral-foundation-notifies-patients-after-employee-email-accounts-hacked/Southcentral Foundation, Alaska, southcentralfoundation.com
54
5329/12/2016APT28
APT29
DNC (Democratic National Committee)The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) reval the details of "Grizzly Steppe", the operation through which two alleged Russian APTs (APT28 and APT29) hacked the Democratic National Committee since Summer 2015.Targeted AttackOrg: PoliticsCWUShttps://www.us-cert.gov/sites/default/files/publications/JAR_16-20296A_GRIZZLY%20STEPPE-2016-1229.pdfAPT28,APT29,DNC,Democratic National Committee,Grizzly Steppe, Department of Homeland Security, DHS, Federal Bureau of Investigation, FBI
55
5430/12/2016?ToppsTopps, the maker of iconic collectable trading cards reveals that hackers could have stolen customers' credit and debit card numbers along with their associated security codes in a recent breach.UnknownIndustry: CollectiblesCCUShttp://www.bbc.com/news/technology-38468961Topps
56
5530/12/2016Anonymous & HackBackBilderberg GroupThe official website of the Bilderberg Group was compromised today, with attackers posting a message warning that future hacks would be possible unless members start working for the benefit of humanity.DefacementOrg: ConferencingHN/Ahttp://news.softpedia.com/news/bilderberg-website-hacked-members-given-ultimatum-to-work-for-humanity-511424.shtmlBilderberg Group, HackBack, Anonymous
57
5630/12/2016OurMineNat Geo Photography Twitter Account (@NatGeoPhotos)The OurMine hacking group hacks the official Twitter account of Nat Geo Photography (@NatGeoPhotos) and starts a series of Tweets to its 2.71 million followers.Account HijackingOrg: Non-Profit (Science and Nature)CCUShttps://www.hackread.com/ourmine-hacks-nat-geo-photography-twitter-account/OurMine, Nat Geo Photography, @NatGeoPhotos
58
5730/12/2016Shin0bi_H4x0rPhilippine Military (army.mil.ph)A hacker going by the online handle of Shin0bi_H4x0r hacked and defaced the official website of the Philippine Military (army.mil.ph)DefacementMilitaryCCPHhttps://www.hackread.com/philippine-military-website-hacked-defaced/Shin0bi_H4x0r, Philippine Military, army.mil.ph
59
5831/12/2016Gh0s7Thailand’s National Statistical Office (nso.go.th)In name of #OpSingleGateway Gh0s7 hacks the Thailand’s National Statistical Office (nso.go.th) and dumps the leaked data.UnknownGovernmentHTHhttp://securityaffairs.co/wordpress/54906/breaking-news/opsinglegateway-gh0s7.htmlGh0s7, #OpSingleGateway, Thailand’s National Statistical Office, nso.go.th
60
5931/12/2016?KeepKeyKeepKey, a hardware bitcoin wallet, discloses how a brief compromise of the company phone and email enabled the attacker to reset some account passwords.Account HijackingDigital CurrencyCCUShttps://www.databreaches.net/keepkey-notifies-customers-of-security-incident-offers-30-btc-reward-for-tips-leading-to-attackers-arrest/Keepkey
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
Loading...
 
 
 
Sheet1