The Cyber-Cave

Reflections on the political, technological, cultural and economic trends of the world

List of major cyber attacks

CYBER CRIME:
-Tesco had to repay £2.5m to thousands of customers (though losses for each account were relatively small) who had their money stolen in a cyber attack. Once hackers found account details, they started trading credit card details in the dark web (a huge weakness of Tesco was that some Tesco’s web-sites would allow someone with the same IP to try unlimited login attempts)
-Hackers stealing $81m from the Bangladeshi Central Bank
-Oman’s Bank Muscat lost $39m because of an ATM fraud (pre-paid cards)
-1.8bn yen ($16.9m) were withdrawn from Japanese ATM machines with forged credit cards in just three hours.
-in 2016 Russian hackers stole $31m from Russian Central Bank and Russian commercial banks.
-In 2017 it was revealed by the U.S DoJ that allegedly a Lithuanian hacker had conned employees at two major tech giants (Google and Facebook) with spear phishing emails. The hacker pretended to be an employee of an Asian manufacturing supplier that was sending fake invoices. The scheme worked for two years and the hacker made $100m in payments.

CYBER ‘ACTIVISM’:
-ARAMCO: an employee clicked on a bogus link from a scam email, thereby downloading a malware dubbed ‘Shammon’. Data in more than 30.000 computers was deleted. For a few days the logistics of Amarco was badly affected since internal technicians decided to switch off the servers to avoid a greater contamination of the virus across Aramco’s network. Aramco decided to buy new hard drives from Thailand (Thailand is becoming a global centre for hard drive manufacturing for major companies like Sony, Canon…). A group called ‘Cutting Sword of Justice’ claimed responsibility and justified its action on the basis of retaliation against the foreign policy of Saudi Arabia.

DDOS:
-2012 Jp Morgan, Bank of America, Citigroup, Bancorp, Wells Fargo
-2016 Lloyds (customers unable to login)
-2016 Brian Kreb’s website on cybersecurity was attacked by a record DDOS (665 Gigabits of traffic per second)
-2016 The networks of Dyn were attacked, thereby affecting major websites like Twtter, Spotify, Reddit etc.
-2016 Sberbank (users unable to reach the website)
-2016 The websites of the major Swedish media outlets are offline for a few hours

DATA THEFT
-Epsilon, Linkedin, Adobe, Ebay, Sony, Myspace, Yahoo, Jp Morgan, Talk Talk, U.S government (the data of 1.1m fingerprints was stolen in 2015).

CYBERWARFARE:
-2003: Titan Rain attack- a series of attacks (probably from China) to steal confidential information from military contractors (like Lockheed Martin) of the US Government.
-2007: DDOS against Estonian banks and other important web services (probably courtesy of Russia). As a result, in 2008 NATO established its Cyber Defence centre in Tallin.
-2008: DDOS attack by Russia against multiple Georgian web sites during the Russian-Georgian War.
-2010: Stuxnet virus (courtesy of both USA and Israeli intelligence) infected the computers of the Iranian nuclear stations to destroy the centrifuges.
-2012: A virus attack against Rasgas (Qatar’s gas company) brought down its website and e-mail network (American intelligence pointed the finger at Iran)
-2012 virus against Aramco
-2013: Some television stations and banks in South Korea wee attacked by North Korean hackers. Communications and mobile payments were disrupted.
-2013 Bogachev attacking Turkey’s military networks
-2014 Ukranian military networks infiltrated to find intelligence information
-2014 Sberbank clients receive bogus text messages saying that they should withdraw money as quickly as possible because international sanctions would drain liquidity from Russian banks.
-2014 Sony hack
-2014 Hack against a German steel mill (the furnace was shut down)
-2015: The servers used by the Left Party in the Bundestag were infected with a malware that allowed hackers to access confidential data. Fingers have pointed at a hacking group called ‘Sofacy’, which many consider to be close to the Russian intelligence apparatus.
-2016 Ukrainian power grid hacked (probably the first known power outage due to a cyber attack)
-2016 Le Monde website hacked

CRITICAL INFRASTRUCTURE:
-The networks of three NHS hospitals in Lincolnshire crashed because of a virus. As a result some planned medical operations had to be cancelled;

———————————–

CRIMINAL GROUPS:
-Carbanak group- uses a combination of spear phishing and malware via e-mail.
-Business Club. One of the leaders, Evgeniy M. Bogachev (FBI $3 million bounty), is accused of having infected as many as millions of computers and stealing money from online bank accounts; also accused of being a FSB asset (‘piggybacking’).
-Peter Levashov using spamming bots

Advertisements
%d bloggers like this: