july 2012 cyber attacks timeline part i
DESCRIPTION
List of Main Cyber Attacks from 1 to 15 July 2012. More @ hackmageddon.comTRANSCRIPT
Date Author Target Description Attack Target
Category Attack
Category
July 1 ?
The University of Southern California (USC) warns staff members, faculty, students and visitors regarding a security breach as a result of which credit card numbers may have been exposed.
1
Unknown Education Cyber Crime
July 1 ?
Unknown hackers delete the websites of Amit Agarwal, Wall Street Journal India tech columnist and founder of the Digital Inspiration (Labnol.org) blog.
2
Unknown News Cyber Crime
July 1
.c0mrade (AKA @OfficialComrade) claims to have hacked the well-known Security Company Trend Micro and dumps 158 mb of compressed data claimed to belong to the same company.
3 In any case firm denies claims.
4
Unknown Industry:
Information Security
Cyber Crime
July 1
The same archive contains data belonging to Sykes (sykes.com), a company providing contact center services for Trend Micro.
3
Unknown Industry:
Contact Center Cyber Crime
July 1
A report on the Indian Express reveals that Hackers were able to break into sensitive naval computer systems in Visakhapatnam, the headquarters of the Eastern Naval Command, and planted bugs that relayed confidential data to IP addresses in China.
5
APT Military Cyber
Espionage
July 1 @Anon
Antidote
An Anonymous-affiliated hacker that goes by the name of Antidote (@AnonAntidote) takes credit for defacing the website of the Oak Creek Ranch School (ocrs.com), Arizona. The breach is part of #OpLiberation, a campaign that aims to protest abuses that take place against teenagers in certain educational institutions.
6
Defacement Education Hacktivism
July 2 ?
Unidentified hackers, allegedly coming from a remote location in Southeast Asia, leave a rogue spam application that could completely compromise the India Central Bureau Of Intelligence (cbi.nic.in) server and website.
7
Spam Law
Enforcement Cyber
Warfare
July 3
In name of #ProjectDragonFly and #ProjectGhostShell, @TeamGhostShell hacks several Chinese websites and dumps 200,000 accounts and 300,000 records containing other types of information.
8
Different Vulnerabilities
Different targets
Hacktivism
July 3
Hacktivists part of the RedHack collective once again protest against Turkey’s government. This time, the target is a subdomain hosted on the website of the country’s Foreign Ministry (public.mfa.gov.tr). The group also reveals the identities of foreign diplomatic personnel working in Turkey.
9
Unknown Government Hacktivism
July 3 ?
Lemont Police suspects that someone hacked into the village’s tornado siren system, causing all seven sirens to sound for about 30 minutes.
10
Unknown Government Cyber Crime
July 5 ?
Several electronic road construction signs around Anchorage (Alaska) are hacked. Signs are changed to read “Impeach Obama.”
11
Uknown
Industry: Road
Construction Cyber Crime
July 10
Members of Japanese hacker organization, StaticNinja AKA @Stat1cN1nja which is associated with Anonymous, publish 1.2 Gigabyte of internal data from IT-service company Innodata Isogen. As stated by the attackers, data were stolen from Innodata its sister company Philippine Information Analyst.
12
Unknown Industry:
Information Technology
Cyber Crime
July 6
Anonymous hacks the anti-piracy group Copyright Labs (copyrightlabs.in), but instead of taking the site down, they alter the message sent to torrent website owners by their automated takedown tool.
13
Unknown Industry: Copyright
Hacktivism
July 7
The official website of the Presidency of Paraguay (presidencia.gov.py) is breached by Paraguay Unlocker Security, a group of Anonymous-affiliated hackers.
14
Defacement Government Hacktivism
July 7
Several Companies
After the alleged breach to Trend Micro and Sykes, .c0mrade dumps 6 Gb of emails belonging to several companies all over the world.
15
Different Vulnerabilities
Different targets
Cyber Crime
July 7
boychat.org
Tibit AKA @TibitXimer, a member of the @Wikiboat crew takes down several sites belonging to famous music artists and other targets. The following web sites fall under his fists:
16
carlyraemusic.com
justinbiebermusic.com
whitepowerforum.com
americannaziparty.com
kpmg.com
jellis.com
boychat.org
DDoS
Industry: Entertainment
Industry: Entertainment
Organization: Political
Organization: Political
Industry: Professional
Services
Industry: Professional
Services
Organization: Pedophile
July 7
@GoogleSWE hacks bip.nl and dumps 385 names, email addresses, user names and passwords dumped on the Internet.
17
SQLi Industry: Toys Cyber Crime
July 8 Anonymous
Arab Hackers
Unknown Islamic hackers reveal 1,300 Israeli email addresses and their passwords on the website of Anonymous Arab. According to Avnet Security Systems, most of the addresses and passwords listed are active accounts.
18
Unknown Unknown Cyber
Warfare
July 9 ?
An online community of Android fans Phandroid's AndroidForums.com is breached using "a known exploit", and data including usernames, hashed passwords and so forth were accessed. The forum has over one million of registered users.
19
“Known Exploit”
Online Forum Cyber Crime
July 10 ?
Formspring CEO announces that the passwords of all 28 million users have been disabled after 420,000 have been posted on the net.
20
? Social Network Cyber Crime
July 10
@TeamSt34m AKA Encrypted hacks roatpkz.com and dumps more than 2,500 accounts including names, emails and hashed passwords.
21
SQLi Online Games Cyber Crime
July 11 D33Ds
Company
Hackers belonging to a collective called D33Ds Company post what appear to be login credentials for 453,491 user accounts that they said they retrieved in plaintext from an unidentified service on Yahoo.
22 In a statement, Yahoo
representatives confirm the breach that hit the site's Contributor Network (previously Associated Content). According to Yahoo the stolen data was contained in an "older file," and only about 5 percent of the exposed credentials were still valid.
23
SQLi Online Services Cyber Crime
July 11
Members of the NullCrew collective claim to have hacked the website of the Public Broadcasting Service (pbs.org) and dump database information, and nearly 1,000 email addresses and associated clear text passwords.
24
Unknown Organization: Broadcasting
Cyber Crime
July 11
Another action by the members of NullCrew. This time the victim is the World Health Organization (who.int), whose around 550 records sets comprised usernames, passwords (encrypted) and email addresses.
24
Unknown Organization:
United Nations Cyber Crime
July 12 The
Apollo Project
NVIDIA suspends operations of the NVIDIA Developer Zone (developer.nvidia.com) in response to attacks on the site by unauthorized third parties who may have gained access to hashed passwords.
25 A group of hackers called “Apollo
Project”. Up to 400.000 records may have been compromised.
26
Unknown Online Forum Cyber Crime
July 13
The website of the sportswear and casual clothing manufacturer Billabong has been hacked by the WikiBoat collective as part of its WikiBoatWednesday operation. The hackers published the email addresses, users IDs and clear text passwords of 20,000 to 35,000 users.
27
SQLi? Industry: Clothing
Cyber Crime
July 14
CyberZeist AKA @le4ky enters phase 2 of Operation #SaveTheArctic and hacks:
28
A Pakistan Shell domain (shell.com.pk) leaking 25 emails and encrypted passwords;
A BP subdomain (globalmba.bp.com), leaking 450 accounts in the format of emails and encrypted passwords;
rosneft.com (a leader of Russia’s oil industry) leaking 80 emails and encrypted passwords;
gazprom.com, leaking 191 accounts in the format of emails and encrypted passwords.
SQLi Industry: Oil Hacktivism
July 14 The
Apollo Project
The Apollo Project takes credit for another data breach targeting Nvidia, and, to demonstrate it, they publish around 800 records sets. The information posted on Pastebin includes user IDs, names, password hashes, email addresses and other data.
29
Unknown Industry:
Technology Cyber Crime
July 14
@RedHack_EN announces a huge leak (77 Mb) of personal information coming from the Turkish police. The data leaked belong to Informant Files.
30
Unknown Law
Enforcement Hacktivism
July 15 @ligatthacker
A hacker called @ligatthacker hacks High Tech Crime Solutions Inc. (hitechcrimesolutions.com) and leaks 32,000+ private messages including 8,900 names and phone numbers.
31
SQLi Industry: Security
Cyber Crime
July 15
@Zer0Pwn of #NullCrew hacks the ASUS US Store (us.estore.asus.com) and dumps administration login credentails in the format of usernames and hashed passwords.
32
Unknown Industry:
Technology Cyber Crime
July 15
Anonymous hacks and defaces the website of the local government of Queensland Sunshine Coast Area (sunshinecoast.qld.gov.au).
33
Defacement Government Hacktivism
July 15
A hacker collective called Grey Security (@gsec_) claims to have breached the official website of the Palm Springs Police Officer Association (pspoa.com) as a form of protest against law enforcement.
34
Unknown Law
Enforcement Hacktivism
July
Pedophile Sites
Special mention of the (first half of the) month for @TheAnon0ne and his operation #OpPedoChat targeting pedophile sites. The list of the attacks is too long to insert in a single chart.
35
Unknown Organization:
Pedophile Hacktivism
1 http://news.usc.edu/#!/article/36414/notice-of-credit-card-security-breach-at-some-usc-food-outlets/ 2 http://news.softpedia.com/news/Hackers-Delete-WSJ-Tech-Columnist-Amit-Agarwal-s-Website-278537.shtml 3 http://www.cyberwarnews.info/2012/07/01/anti-virus-giant-trendmicro-sykes-hacked-hundreds-of-emails-dumped-by-officialcomrade/ 4 http://news.softpedia.com/news/Hacker-Leaks-Emails-Allegedly-Stolen-from-Trend-Micro-Firm-Denies-Claims-278759.shtml 5 http://www.indianexpress.com/news/china-hackers-enter-navy-computers-plant-bug-to-extract-sensitive-data/968897/0 6 http://www.cyberwarnews.info/2012/07/02/oak-creek-ranch-school-hacked-defaced-for-opliberation-by-anonymous/ 7 http://www.telegraphindia.com/1120705/jsp/jharkhand/story_15690561.jsp#.UAMfTvXVv1W 8 http://www.cyberwarnews.info/2012/07/04/300000-personal-details-leaked-38-sites-hacked-for-projectdragonfly/ 9 http://www.hurriyetdailynews.com/investigation-launched-into-redhack-after-ministry-hacking.aspx?pageID=238&nid=24625&NewsCatID=341 10 http://articles.chicagotribune.com/2012-07-03/news/chi-police-hacker-lemont-tornado-siren-20120703_1_tornado-sirens-sound-warning-lemont-police 11 http://articles.ktuu.com/2012-07-05/signs_32555718 12 http://translate.google.com/translate?sl=ru&tl=en&js=n&prev=_t&hl=en&ie=UTF-8&layout=2&eotf=1&u=http://www.securitylab.ru/news/426851.php&act=url 13 http://torrentfreak.com/anonymous-hacks-anti-piracy-takedown-tool-120706/ 14 http://news.softpedia.com/news/Anonymous-Defaces-Website-of-the-Presidency-of-Paraguay-279914.shtml 15 http://www.cyberwarnews.info/2012/07/07/6gb-emails-from-companies-world-wide-leaked-after-sykes-and-trend-micro-attack-by-c0mrade/ 16 http://www.cyberwarnews.info/2012/07/07/well-known-musician-sites-under-attack-by-anonymous-hacktivist/ 17 http://datalossdb.org/incidents/6915-385-names-email-addresses-user-names-and-passwords-dumped-on-the-internet
18 http://www.haaretz.com/news/diplomacy-defense/islamic-hackers-post-hundreds-of-israeli-email-addresses-and-passwords-1.448142 19 http://androidforums.com/site-updates-announcements/580371-important-notice-security-breach.html#post4645422 20 http://blog.formspring.me/2012/07/urgent-change-your-formspring-password/ 21 http://www.cyberwarnews.info/2012/07/10/personal-attacks-lead-to-roatpkz-com-database-being-hacked-and-leaked-by-teamst34m/ 22 http://arstechnica.com/security/2012/07/yahoo-service-hacked/ 23 http://techcrunch.com/2012/07/12/yahoo-confirms-apologizes-for-the-email-hack-says-still-fixing-plus-check-if-you-were-impacted-non-yahoo-accounts-apply/ 24 http://news.softpedia.com/news/PBS-and-World-Health-Organization-Allegedly-Hacked-User-Details-Leaked-281123.shtml 25 http://www.nvidia.com/content/devzone/index.html 26 http://news.softpedia.com/news/Hackers-Take-Credit-for-NVIDIA-Breach-Claim-Shop-Was-Also-Compromised-281264.shtml 27 http://news.softpedia.com/news/Billabong-Hacked-Over-20-000-Clear-Text-Passwords-Leaked-281131.shtml 28 http://news.softpedia.com/news/Operation-Save-the-Arctic-Shell-Gazprom-Rosneft-BP-Hacked-281298.shtml 29 http://news.softpedia.com/news/Hackers-Take-Credit-for-NVIDIA-Breach-Claim-Shop-Was-Also-Compromised-281264.shtml 30 http://www.cyberguerrilla.org/?p=6625 31 http://datalossdb.org/incidents/6975-32-000-private-messages-including-8-900-names-phone-numbers-dumped-on-the-internet-after-site-hacked-with-sql-injection 32 http://www.cyberwarnews.info/2012/07/16/asus-store-hacked-administration-credentials-leaked-by-nullcrew/ 33 http://www.cyberwarnews.info/2012/07/15/sun-shine-coast-website-hacked-and-defaced-by-anonymous-for-opaustralia/ 34 http://news.softpedia.com/news/Hackers-Claim-Breach-of-Palm-Springs-Police-Officer-Association-281413.shtml 35 http://pastebin.com/u/TheAnon0ne