Significant Cyber Incidents Timeline

Overview

• The timeline records significant cyber incidents since 2006.
• Focuses on attacks on government agencies, defense, and high-tech companies.
• Includes economic crimes with losses over a million dollars.

November 2024

• UK's National Cyber Security Center:
  • Noted a three-fold increase in significant cyberattacks.
  • Supported 430 attacks; 89 nationally significant.
  • Identified threats from China, Russia, Iran, and North Korea.
• Chinese Hackers (Salt Typhoon):
  • Breached eight U.S. telecom providers and others globally.
  • Espionage campaign stealing call data, surveillance requests.
  • Targeted government and political communication.
• Chinese Espionage:
  • Planted a chip in a U.S. general's conference name tag.
• Iranian Hackers:
  • Targeting aerospace and defense in Israel, UAE, Turkey, India, Albania.
  • Used LinkedIn as fake recruiters to spread malware.
• South Korean Accusations:
  • Pro-Russian hackers attacked websites after monitoring NK troops in Ukraine.

October 2024

• Russian Threats:
  • Emails with bomb threats to Ukrainian embassies worldwide.
  • Sent malware to Ukrainian draft-age men.
• Australia's Cyber Security Bill 2024:
  • First national cyber legislation.
  • Standards for ransomware reporting and smart device security.
• Chinese Hacks in Canada:
  • Breached 20 government networks.
  • Purpose: espionage, IP theft.
• Russian and Chinese Campaigns:
  • Compromised emails appearing from Amazon/Microsoft.
  • Attacked U.S. presidential campaign phones.
  • Data exfiltration from Thailand government.

September 2024

• Chinese Middle East Espionage:
  • Targeted human rights studies related to the Israel-Hamas War.
• Russian Espionage in Mongolia:
  • Targeted Ministry of Foreign Affairs, Cabinet websites.

August 2024

• U.S. Election Interference:
  • Iranian hackers targeted Trump campaign.
  • Offered stolen info to Biden-Harris campaign.
• UN Cybercrime Treaty:
  • First treaty on cybercrime unanimously approved.

July 2024

• South Korean Espionage Leak:
  • Information leak from espionage activities.
• Microsoft Update Outage:
  • Global IT outage due to faulty CrowdStrike update.

June 2024

• Japanese Space Agency Attacks:
  • Series of cyberattacks on space agency networks.
• Indonesian Ransomware Attack:
  • Disrupted immigration services, prompted a nationwide audit.

May 2024

• Pakistani Cyber Espionage:
  • Targeted Indian government sectors.
• UK Defense Breach:
  • Exposed data of all troops except special forces.

April 2024

• Belarusian Cyber-Partisans:
  • Crippled Belarus' main security service website.
• Germany's Cyber Military Branch:
  • Plans for Cyber and Information Domain Service.

March 2024

• Iranian Hack on Israeli Nuclear Facility:
  • Leaked sensitive documents.
• Russia's U.S. Cyber Espionage:
  • Stolen source code and access to internal Microsoft systems.

February 2024

• Iranian Military Ship Hack:
  • U.S. hacked an Iranian ship sharing intelligence with Houthis.
• French Health Data Breach:
  • Affected 33 million citizens' personal data.

January 2024

• Swedish Government Ransomware:
  • Affected operations for 120 government offices.
• Russian Webcam Hack in Kyiv:
  • Used webcams to gather data on air defense systems.