fbpx
Wikipedia

List of security hacking incidents

The list of security hacking incidents covers important or noteworthy events in the history of security hacking and cracking.

1900

1903

1930s

1932

1939

1940s

1943

1949

  • The theory that underlies computer viruses was first made public in 1949, when computer pioneer John von Neumann presented a paper titled "Theory and Organization of Complicated Automata". In the paper von Neumann speculated that computer programs could reproduce themselves.[4]

1950s

1955

  • At MIT, "hack" first came to mean fussing with machines. The minutes of an April 1955 meeting of the Tech Model Railroad Club state that "Mr. Eccles requests that anyone working or hacking on the electrical system turn the power off to avoid fuse blowing."[5]

1957

  • Joe "Joybubbles" Engressia, a blind seven-year-old boy with perfect pitch, discovered that whistling the fourth E above middle C (a frequency of 2600 Hz) would interfere with AT&T's automated telephone systems, thereby inadvertently opening the door for phreaking.

1960s

  • Various phreaking boxes are used to interact with automated telephone systems.

1963

1965

  • William D. Mathews from MIT found a vulnerability in a CTSS running on an IBM 7094. The standard text editor on the system was designed to be used by one user at a time, working in one directory, and so created a temporary file with a constant name for all instantiations of the editor. The flaw was discovered when two system programmers were editing at the same time and the temporary files for the message-of-the day and the password file became swapped, causing the contents of the system CTSS password file to display to any user logging into the system.[9][10][11][12]

1967

  • The first known incidence of network penetration hacking took place when members of a computer club at a suburban Chicago area high school were provided access to IBM's APL network. In the Fall of 1967, IBM (through Science Research Associates) approached Evanston Township High School with the offer of four 2741 Selectric teletypewriter based terminals with dial-up modem connectivity to an experimental computer system which implemented an early version of the APL programming language. The APL network system was structured in Workspaces which were assigned to various clients using the system. Working independently, the students quickly learned the language and the system. They were free to explore the system, often using existing code available in public Workspaces as models for their own creations. Eventually, curiosity drove the students to explore the system's wider context. This first informal network penetration effort was later acknowledged as helping harden the security of one of the first publicly accessible networks:[13]

    Science Research Associates undertook to write a full APL system for the IBM 1500. They modeled their system after APL/360, which had by that time been developed and seen substantial use inside of IBM, using code borrowed from MAT/1500 where possible. In their documentation they acknowledge their gratitude to "a number of high school students for their compulsion to bomb the system". This was an early example of a kind of sportive, but very effective, debugging that was often repeated in the evolution of APL systems.

1970s

1971

1979

1980s

1980

technical experts; skilled, often young, computer programmers, who almost whimsically probe the defenses of a computer system, searching out the limits and the possibilities of the machine. Despite their seemingly subversive role, hackers are a recognized asset in the computer industry, often highly prized

The newspaper describes white hat activities as part of a "mischievous but perversely positive 'hacker' tradition". When a National CSS employee revealed the existence of his password cracker, which he had used on customer accounts, the company chastised him not for writing the software but for not disclosing it sooner. The letter of reprimand stated that "The Company realizes the benefit to NCSS and in fact encourages the efforts of employees to identify security weaknesses to the VP, the directory, and other sensitive software in files".[16]

1981

  • Chaos Computer Club forms in Germany.
  • Ian Murphy aka Captain Zap, was the first cracker to be tried and convicted as a felon. Murphy broke into AT&T's computers in 1981 and changed the internal clocks that metered billing rates. People were getting late-night discount rates when they called at midday. Of course, the bargain-seekers who waited until midnight to call long distance were hit with high bills.[17]

1983

1984

1985

  • KILOBAUD is re-organized into The P.H.I.R.M. and begins sysopping hundreds of BBSs throughout the United States, Canada, and Europe.
  • The online 'zine Phrack is established.
  • The Hacker's Handbook is published in the UK.[23]
  • The FBI, Secret Service, Middlesex County NJ Prosecutor's Office and various local law enforcement agencies execute seven search warrants concurrently across New Jersey on July 12, 1985, seizing equipment from BBS operators and users alike for "complicity in computer theft",[24] under a newly passed, and yet untested criminal statute.[25] This is famously known as the Private Sector Bust,[26] or the 2600 BBS Seizure,[27] and implicated the Private Sector BBS sysop, Store Manager (also a BBS sysop), Beowulf, Red Barchetta, The Vampire, the NJ Hack Shack BBS sysop, and the Treasure Chest BBS sysop.

1986

1987

1988

1989

1990s

1990

  • Operation Sundevil introduced. After a prolonged sting investigation, Secret Service agents swoop down on organizers and prominent members of BBSs in 14 U.S. cities including the Legion of Doom, conducting early-morning raids and arrests. The arrests involve and are aimed at cracking down on credit-card theft and telephone and wire fraud. The result is a breakdown in the hacking community, with members informing on each other in exchange for immunity. The offices of Steve Jackson Games are also raided, and the role-playing sourcebook GURPS Cyberpunk is confiscated, possibly because the government fears it is a "handbook for computer crime". Legal battles arise that prompt the formation of the Electronic Frontier Foundation, including the trial of Knight Lightning.
  • Australian federal police tracking Realm members Phoenix, Electron and Nom are the first in the world to use a remote data intercept to gain evidence for a computer crime prosecution.[34]
  • The Computer Misuse Act 1990 is passed in the United Kingdom, criminalising any unauthorised access to computer systems.

1992

1993

  • The first DEF CON hacking conference takes place in Las Vegas. The conference is meant to be a one-time party to say good-bye to BBSs (now replaced by the Web), but the gathering was so popular it became an annual event.
  • AOL gives its users access to Usenet, precipitating Eternal September.

1994

  • Summer: Russian crackers siphon $10 million from Citibank and transfer the money to bank accounts around the world. Vladimir Levin, the 30-year-old ringleader, used his work laptop after hours to transfer the funds to accounts in Finland and Israel. Levin stands trial in the United States and is sentenced to three years in prison. Authorities recover all but $400,000 of the stolen money.
  • Hackers adapt to emergence of the World Wide Web quickly, moving all their how-to information and hacking programs from the old BBSs to new hacker web sites.
  • AOHell is released, a freeware application that allows a burgeoning community of unskilled script kiddies to wreak havoc on America Online. For days, hundreds of thousands of AOL users find their mailboxes flooded with multi-megabyte email bombs and their chat rooms disrupted with spam messages.
  • December 27: After experiencing an IP spoofing attack by Kevin Mitnick, computer security expert Tsutomu Shimomura started to receive prank calls that popularized the phrase "My kung fu is stronger than yours".[37]

1995

  • The movies The Net and Hackers are released.
  • The Canadian ISP dlcwest.com is hacked and website replaced with a graphic and the caption "You've been hacked MOFO"
  • The US Secret Service raid 12 and arrest 6 cellular phone hackers in Operation Cybersnare
  • February 22: The FBI raids the "Phone Masters".[38]

1996

  • Hackers alter Web sites of the United States Department of Justice (August), the CIA (October), and the U.S. Air Force (December).
  • Canadian hacker group, Brotherhood, breaks into the Canadian Broadcasting Corporation.
  • Arizona hacker, John Sabo A.K.A FizzleB/Peanut, was arrested for hacking Canadian ISP dlcwest.com claiming the company was defrauding customers through over billing.
  • The US general accounting office reports that hackers attempted to break into Defense Department computer files some 250,000 times in 1995 alone with a success rate of about 65% and doubling annually.[39][40][41][42]
  • Cryptovirology is born with the invention of the cryptoviral extortion protocol that would later form the basis of modern ransomware.[43]

1997

1998

1999

  • Software security goes mainstream In the wake of Microsoft's Windows 98 release, 1999 becomes a banner year for security (and hacking). Hundreds of advisories and patches are released in response to newfound (and widely publicized) bugs in Windows and other commercial software products. A host of security software vendors release anti-hacking products for use on home computers.
  • U.S. President Bill Clinton announces a $1.46 billion initiative to improve government computer security. The plan would establish a network of intrusion detection monitors for certain federal agencies and encourage the private sector to do the same.
  • January 7: The "Legion of the Underground" (LoU) declares "war" against the governments of Iraq and the People's Republic of China. An international coalition of hackers (including Cult of the Dead Cow, 2600's staff, Phrack's staff, L0pht, and the Chaos Computer Club) issued a joint statement () condemning the LoU's declaration of war. The LoU responded by withdrawing its declaration.
  • March: The Melissa worm is released and quickly becomes the most costly malware outbreak to date.
  • July: Cult of the Dead Cow releases Back Orifice 2000 at DEF CON.
  • August: Kevin Mitnick, is sentenced to 5 years, of which over 4 years had already been spent pre-trial including 8 months' solitary confinement.
  • September: Level Seven Crew hacks the U.S. Embassy in China's website and places racist, anti-government slogans on embassy site in regards to 1998 U.S. embassy bombings.[48]
  • September 16: The United States Department of Justice sentences the "Phone Masters".[49]
  • October: American Express introduces the "Blue" smart card, the industry's first chip-based credit card in the US.
  • November 17: A hacker interviewed by Hilly Rose during the radio show Coast to Coast AM (then hosted by Art Bell) exposes a plot by al-Qaeda to derail Amtrak trains. This results in all trains being forcibly stopped over Y2K as a safety measure.

2000s

2000

  • May: The ILOVEYOU worm, also known as VBS/Loveletter and Love Bug worm, is a computer worm written in VBScript. It infected millions of computers worldwide within a few hours of its release. It is considered to be one of the most damaging worms ever. It originated in the Philippines; made by an AMA Computer College student Onel de Guzman for his thesis.
  • September: Computer hacker Jonathan James became the first juvenile to serve jail time for hacking.

2001

  • Microsoft becomes the prominent victim of a new type of hack that attacks the domain name server. In these denial-of-service attacks, the DNS paths that take users to Microsoft's websites are corrupted.
  • February: A Dutch cracker releases the Anna Kournikova virus, initiating a wave of viruses that tempts users to open the infected attachment by promising a sexy picture of the Russian tennis star.
  • April: FBI agents trick two Russian crackers into coming to the U.S. and revealing how they were hacking U.S. banks.[50]
  • July: Russian programmer Dmitry Sklyarov is arrested at the annual DEF CON hacker convention. He was the first person criminally charged with violating the Digital Millennium Copyright Act (DMCA).
  • August: Code Red worm, infects tens of thousands of machines.
  • The National Cyber Security Alliance (NCSA) is established in response to the September 11 attacks on the World Trade Center.[51]

2002

  • January: Bill Gates decrees that Microsoft will secure its products and services, and kicks off a massive internal training and quality control campaign.
  • March: Gary McKinnon is arrested following unauthorized access to US military and NASA computers.
  • May: Klez.H, a variant of the worm discovered in November 2001, becomes the biggest malware outbreak in terms of machines infected, but causes little monetary damage.
  • June: The Bush administration files a bill to create the Department of Homeland Security, which, among other things, will be responsible for protecting the nation's critical IT infrastructure.
  • August: Researcher Chris Paget publishes a paper describing "shatter attacks", detailing how Windows' unauthenticated messaging system can be used to take over a machine. The paper raises questions about how securable Windows could ever be. It is however largely derided as irrelevant as the vulnerabilities it described are caused by vulnerable applications (placing windows on the desktop with inappropriate privileges) rather than an inherent flaw within the Operating System.
  • October: The International Information Systems Security Certification Consortium—(ISC)²—confers its 10,000th CISSP certification.

2003

2004

  • March: New Zealand's Government (National Party) website defaced by hacktivist group BlackMask[52]
  • July: North Korea claims to have trained 500 hackers who successfully crack South Korean, Japanese, and their allies' computer systems.[53]
  • October: National Cyber Security Awareness Month was launched by the National Cyber Security Alliance and U.S. Department of Homeland Security.

2005

2006

  • January: One of the few worms to take after the old form of malware, destruction of data rather than the accumulation of zombie networks to launch attacks from, is discovered. It had various names, including Kama Sutra (used by most media reports), Black Worm, Mywife, Blackmal, Nyxem version D, Kapser, KillAV, Grew and CME-24. The worm would spread through e-mail client address books, and would search for documents and fill them with garbage, instead of deleting them to confuse the user. It would also hit a web page counter when it took control, allowing the programmer who created it as well as the world to track the progress of the worm. It would replace documents with random garbage on the third of every month. It was hyped by the media but actually affected relatively few computers, and was not a real threat for most users.
  • May: Jeanson James Ancheta receives a 57-month prison sentence,[57] and is ordered to pay damages amounting to $15,000 to the Naval Air Warfare Center in China Lake and the Defense Information Systems Agency, for damage done due to DDoS attacks and hacking. Ancheta also had to forfeit his gains to the government, which include $60,000 in cash, a BMW, and computer equipment.[57]
  • May: The largest defacement in Web History as of that time is performed by the Turkish hacker iSKORPiTX who successfully hacked 21,549 websites in one shot.[58]
  • July: Robert Moore and Edwin Pena were the first people to be charged by U.S. authorities for VoIP hacking. Robert Moore served 2 years in federal prison and was given $152,000 restitution. Once Edwin Pena was caught after fleeing the country, evading authorities for almost 2 years, he was sentenced to 10 years and given $1 million restitution.[59]
  • September: Viodentia releases FairUse4WM tool which would remove DRM information off Windows Media Audio (WMA) files downloaded from music services such as Yahoo! Unlimited, Napster, Rhapsody Music and Urge.

2007

  • August 11: United Nations website hacked by Indian Hacker Pankaj Kumar Singh.[64]
  • November 14: Panda Burning Incense which is known by several other names, including Fujacks and Radoppan.T lead to the arrest of eight people in China. Panda Burning Incense was a parasitic virus that infected executable files on a PC. When infected, the icon of the executable file changes to an image of a panda holding three sticks of incense. The arrests were the first for virus writing in China.[65]

2008

  • January 17: Project Chanology; Anonymous attacks Scientology website servers around the world. Private documents are stolen from Scientology computers and distributed over the Internet.
  • March 7: Around 20 Chinese hackers claim to have gained access to the world's most sensitive sites, including the Pentagon. They operated from an apartment on a Chinese Island.[66]
  • March 14: Trend Micro website successfully hacked by Turkish hacker Janizary (aka Utku).[67]

2009

  • April 4: Conficker worm infiltrated millions of PCs worldwide including many government-level top-security computer networks.[68]

2010s

2010

  • January 12: Operation Aurora Google publicly reveals[69] that it has been on the receiving end of a "highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google"
  • June: Stuxnet The Stuxnet worm is found by VirusBlokAda. Stuxnet was unusual in that while it spread via Windows computers, its payload targeted just one specific model and type of SCADA systems. It slowly became clear that it was a cyber attack on Iran's nuclear facilities—with most experts believing that Israel[70] was behind it—perhaps with US help.
  • December 3: The first Malware Conference, MALCON took place in India. Founded by Rajshekhar Murthy, malware coders are invited to showcase their skills at this annual event supported by the Government of India. An advanced malware for Symbian OS is released by hacker A0drul3z.

2011

  • The hacker group Lulz Security is formed.
  • April 9: Bank of America website got hacked by a Turkish hacker named JeOPaRDY. An estimated 85,000 credit card numbers and accounts were reported to have been stolen due to the hack. Bank officials say no personal customer bank information is available on that web-page. Investigations are being conducted by the FBI to trace down the incriminated hacker.[71]
  • April 17: An "external intrusion" sends the PlayStation Network offline, and compromises personally identifying information (possibly including credit card details) of its 77 million accounts, in what is claimed to be one of the five largest data breaches ever.[72]
  • Computer hacker sl1nk releases information of his penetration in the servers of the Department of Defense (DoD), Pentagon, NASA, NSA, US Military, Department of the Navy, Space and Naval Warfare System Command and other UK/US government websites.[73]
  • September: Bangladeshi hacker TiGER-M@TE made a world record in defacement history by hacking 700,000 websites in a single shot.[74]
  • October 16: The YouTube channel of Sesame Street was hacked, streaming pornographic content for about 22 minutes.[75]
  • November 1: The main phone and Internet networks of the Palestinian territories sustained a hacker attack from multiple locations worldwide.[76]
  • November 7: The forums for Valve's Steam service were hacked. Redirects for a hacking website, Fkn0wned, appeared on the Steam users' forums, offering "hacking tutorials and tools, porn, free giveaways and much more."[77]
  • December 14: Five members of the Norwegian hacker group, Noria, were arrested, allegedly suspected for hacking into the email account of the militant extremist Anders Behring Breivik (who perpetrated the 2011 attacks in the country).[78]

2012

  • A hacker published over 400,000 credit cards online,[79] and threatened Israel to release 1 million credit cards in the future. In response to that incident, an Israeli hacker published over 200 Albanian' credit cards online.[80][81]
  • Gottfrid Svartholm Warg, the co-founder of Pirate Bay, was convicted in Denmark of hacking a mainframe computer, what was then Denmark's biggest hacking case.[82]
  • January 7: "Team Appunity", a group of Norwegian hackers, were arrested for breaking into Norway's largest prostitution website then publishing the user database online.[83]
  • February 3: Marriott was hacked by a New Age ideologist, Attila Nemeth who was resisting against the New World Order where he said that corporations are allegedly controlling the world. As a response Marriott reported him to the United States Secret Service.[84]
  • February 8: Foxconn is hacked by a hacker group, "Swagg Security", releasing a massive amount of data including email and server logins, and even more alarming—bank account credentials of large companies like Apple and Microsoft. Swagg Security stages the attack just as a Foxconn protest ignites against terrible working conditions in southern China.[85]
  • May 4: The websites of several Turkish representative offices of international IT-companies are defaced within the same day by F0RTYS3V3N (Turkish Hacker), including the websites of Google, Yandex, Microsoft, Gmail, MSN, Hotmail, PayPal.[86][87][88][89]
  • May 24: WHMCS is hacked by UGNazi, they claim that the reason for this is because of the illegal sites that are using their software.
  • May 31: MyBB is hacked by newly founded hacker group, UGNazi, the website was defaced for about a day, they claim their reasoning for this was because they were upset that the forum board Hackforums.net uses their software.
  • June 5: The social networking website LinkedIn has been hacked and the passwords for nearly 6.5 million user accounts are stolen by cybercriminals. As a result, a United States grand jury indicted Nikulin and three unnamed co-conspirators on charges of aggravated identity theft and computer intrusion.
  • August 15: The most valuable company in the world Saudi Aramco is crippled by a cyber warfare attack for months by malware called Shamoon. Considered the biggest hack in history in terms of cost and destructiveness . Carried out by an Iranian attacker group called Cutting Sword of Justice.[90] Iranian hackers retaliated against Stuxnet by releasing Shamoon. The malware destroyed over 35,000 Saudi Aramco computers, affecting business operations for months.
  • December 17: Computer hacker sl1nk announced that he has hacked a total of 9 countries' SCADA systems. The proof includes 6 countries: France, Norway, Russia, Spain, Sweden and the United States.[91]

2013

  • The social networking website Tumblr is attacked by hackers. Consequently, 65,469,298 unique emails and passwords were leaked from Tumblr. The data breach's legitimacy is confirmed by computer security researcher Troy Hunt.[92]
  • August: Yahoo! data breaches occurred. More than 1 billion users data are being leaked.

2014

  • February 7: The bitcoin exchange Mt. Gox filed for bankruptcy after $460 million was apparently stolen by hackers due to "weaknesses in [their] system" and another $27.4 million went missing from its bank accounts.[93]
  • October: The White House computer system was hacked.[94] It was said that the FBI, the Secret Service, and other U.S. intelligence agencies categorized the attacks "among the most sophisticated attacks ever launched against U.S. government systems."[95]
  • November 24: In response to the release of the film The Interview, the servers of Sony Pictures are hacked by a hacker group calling itself "Guardian of Peace".
  • November 28: The website of the Philippine telecommunications company Globe Telecom was hacked in response to the poor internet service they are distributing.[96]

2015

2016

  • February: The 2016 Bangladesh Bank heist attempted to steal US$951 million from a Bangladesh Bank, and succeeded in getting $101 million—although some of this was later recovered.
  • July 22: WikiLeaks published the documents from the 2016 Democratic National Committee email leak.
  • July 29: a group suspected coming from China launched hacker attacks on the website of Vietnam Airlines.
  • August 13: The Shadow Brokers (TSB) started publishing several leaks containing hacking tools from the National Security Agency (NSA), including several zero-day exploits. Ongoing leaks until April 2017 (The Shadow Brokers)
  • September: Hacker Ardit Ferizi is sentenced to 20 years in prison after being arrested for hacking U.S. servers and passing the leaked information to members of ISIL terrorist group back in 2015.[100]
  • October: The 2016 Dyn cyberattack is being conducted with a botnet consisting of IOTs infected with Mirai by the hacktivist groups SpainSquad, Anonymous, and New World Hackers, reportedly in retaliation for Ecuador's rescinding Internet access to WikiLeaks founder Julian Assange at their embassy in London, where he has been granted asylum.[101]
  • Late 2016: Hackers steal international personal user data from the company Uber, including phone numbers, email addresses, and names, of 57 million people and 600,000 driver's license numbers of drivers for the company. Uber's GitHub account was accessed through Amazon's cloud-based service. Uber paid the hackers $100,000 for assurances the data was destroyed.[102]
  • December 2016: Yahoo! data breaches reported and affected more than 1 billion users. The data leakage includes user names, email addresses, telephone numbers, encrypted or unencrypted security questions and answers, dates of birth, and hashed passwords

2017

2018

  • March: Computer systems in the city of Atlanta, in the U.S. state of Georgia, are seized by hackers with ransomware. They did not pay the ransom,[115] and two Iranians were indicted by the FBI on cyber crime charges for the breach.[116]
  • The town of Wasaga Beach in Ontario, Canada computer systems are seized by hackers with ransomware.[117]
  • September: Facebook was hacked, exposing to hackers the personal information of an estimated 30 million Facebook users (initially estimated at 50 million) when the hackers "stole" the "access tokens" of 400,000 Facebook users. The information accessible to the hackers included users' email addresses, phone numbers, their lists of friends, Groups they are members of, users' search information, posts on their timelines, and names of recent Messenger conversations.[118][119]
  • October: West Haven, Connecticut USA computer systems are seized by hackers with ransomware, they paid $2,000 in ransom.[120]
  • November:

2019

  • March: Jackson County computer systems in the U.S. state of Georgia are seized by hackers with ransomware, they paid $400,000 in ransom.[122] The city of Albany in the U.S. state of New York experiences a ransomware cyber attack.[123][124]
  • April: Computer systems in the city of Augusta, in the U.S. state of Maine, are seized by hackers using ransomware.[125][126] The City of Greenville (North Carolina)'s computer systems are seized by hackers using ransomware known as RobbinHood.[127][128] Imperial County, in the U.S. state of California, computer systems are seized by hackers using Ryuk ransomware.[129]
  • May: computer systems belonging to the City of Baltimore are seized by hackers using ransomware known as RobbinHood that encrypts files with a "file-locking" virus, as well as the tool EternalBlue.[130][131][132][133]
  • June: The city of Riviera Beach, Florida paid roughly $600,000 ransom in Bitcoin to hackers who seized their computers using ransomware.[134] Hackers stole 18 hours of unreleased music from the band Radiohead demanding $150,000 ransom. Radiohead released the music to the public anyway and did not pay the ransom.[135]
  • November: The Anonymous hacktivist collective announced that they have hacked into four Chinese computer databases and donated those to data breach indexing/notification service vigilante.pw. The hack was conducted in order to support the 2019 Hong Kong protests, amidst the Hong Kong police's siege of the city's Polytechnic University. They also brought up a possible peace plan first proposed by a professor at Inha University in hopes of having the Korean reunification and the five key demands of the Hong Kong protest being fulfilled at once.[136]

2020s

2020

  • February: Anonymous hacked the United Nations website and created a page for Taiwan, a country which had not had a seat at the UN since 1971. The hacked page featured the Flag of Taiwan, the KMT emblem, a Taiwan Independence flag, the Anonymous logo, embedded YouTube videos such as the Taiwanese national anthem and the closing score for the 2019 film Avengers: Endgame titled "It's Been a Long, Long Time", and a caption. The hacked server belonged to the United Nations Department of Economic and Social Affairs.[137]
  • May: Anonymous declared a large hack on May 28, three days after the murder of George Floyd. An individual claiming to represent Anonymous stated that "We are Legion. We do not forgive. We do not forget. Expect us." in a now-deleted video. Anonymous addressed police brutality and said they "will be exposing [their] many crimes to the world". It was suspected that Anonymous were the cause for the downtime and public suspension of the Minneapolis Police Department website and its parent site, the website of the City of Minneapolis.[138]
  • May: Indian national Shubham Upadhyay posed as Superintendent of Police and, using social engineering, used a free caller identification app to call up the in-charge of the Kotwali police station, K. K. Gupta, in order to threaten him to get his phone repaired amidst the COVID-19 lockdown. The attempt was foiled.[139]
  • June: Anonymous claimed responsibility for stealing and leaking a trove of documents collectively nicknamed 'BlueLeaks'. The 269-gigabyte collection was published by a leak-focused activist group known as Distributed Denial of Secrets. Furthermore, the collective took down Atlanta Police Department's website via DDoS, and defaced websites such as a Filipino governmental webpage and that of Brookhaven National Labs. They expressed support for Julian Assange and press freedom, while briefly "taking a swing" against Facebook, Reddit and Wikipedia for having 'engaged in shady practices behind our prying eyes'. In the case of Reddit, they posted a link to a court document describing the possible involvement of a moderator of a large traffic subreddit (/r/news) in an online harassment-related case.[140][141]
  • June: The Buffalo, NY police department's website was supposedly hacked by Anonymous.[142] While the website was up and running after a few minutes, Anonymous tweeted again on Twitter urging that it be taken down.[143] A few minutes later, the Buffalo NY website was brought down again. They also hacked Chicago police radios to play N.W.A's "Fuck tha Police".[144]
  • June: Over 1,000 accounts on multiplayer online game Roblox were hacked to display that they supported U.S. President Donald Trump.[145]
  • July: The 2020 Twitter bitcoin scam occurred.
  • July: User credentials of writing website Wattpad were stolen and leaked on a hacker forum. The database contained over 200 million records.[146]
  • August: A large number of subreddits were hacked to post materials endorsing Donald Trump. The affected subreddits included r/BlackPeopleTwitter, r/3amJokes, r/NFL, r/PhotoshopBattles. An entity with the name of "calvin goh and Melvern" had purportedly claimed responsibility for the massive defacement, and also made violent threats against a Chinese embassy.[147]
  • August: The US Air Force's Hack-A-Sat event was hosted at DEF CON's virtual conference where groups such as Poland Can Into Space, FluxRepeatRocket, AddVulcan, Samurai, Solar Wine, PFS, 15 Fitty Tree, and 1064CBread competed in order to control a satellite in space. The Poland Can Into Space team stood out for having successfully manipulated a satellite to take a picture of the Moon.[148][149]
  • August: The website of Belarusian company "BrestTorgTeknika" was defaced by a hacker nicknaming herself "Queen Elsa", in order to support the 2020–21 Belarusian protests. In it, the page hacker exclaimed "Get Iced Iced already" and "Free Belarus, revolution of our times" with the latter alluding to the famous slogan used by 2019 Hong Kong protests. The results of the hack were then announced on Reddit's /r/Belarus subreddit by a poster under the username "Socookre".[150][151]
  • August: Multiple DDoS attacks forced New Zealand's stock market to temporarily shut down.[152]
  • September: The first suspected death from a cyberattack was reported after cybercriminals hit a hospital in Düsseldorf, Germany with ransomware.[153]
  • October: A wave of botnet-coordinated ransomware attacks against hospital infrastructure occurred in the United States, identified as associated with Russia [ru].[154] State security officials and American corporate security officers were concerned that these attacks might be a prelude to hacking of election infrastructure during the elections of the subsequent month, like similar incidents during the 2016 United States elections and other attacks;[155] there was, however, no evidence that they performed attacks on election infrastructure in 2020.[156]
  • December: A supply chain attack targeting upstream dependencies from Texas IT service provider "SolarWinds" results in serious, wide-ranging security breaches at the U.S. Treasury and Commerce departments. White House officials did not immediately publicly identify a culprit; Reuters, citing sources "familiar with the investigation", pointed toward the Russian government.[157] An official statement shared by Senate Finance Committee ranking member, Ron Wyden said: "Hackers broke into systems in the Departmental Offices division of Treasury, home to the department’s highest-ranking officials."[158]
  • December: A bomb threat posted from a Twitter account that was seemingly hacked by persons with the aliases of "Omnipotent" and "choonkeat", against the Aeroflot Flight 102, a passenger flight with the plane tail number of VQ-BIL coming from Moscow to New York City. Due to that, a runway of New York's John F. Kennedy International Airport was temporarily closed and resulted in the delay of Aeroflot Flight 103, a return flight back to Moscow.[159][160][161]
  • December: The Anonymous group initiated 'Christmas gift' defacements against multiple Russian portals including a municipal website in Tomsk and that of a regional football club. Inside the defacements, they made multiple references such as Russian opposition activist Alexei Navalny, freedom protests in Thailand and Belarus, and opposition to the Chinese Communist Party. They also held a mock award based on an event on the game platform Roblox that was called "RB Battles" where YouTubers Tanqr and KreekCraft, the winner and the runner up of the actual game event, were compared to both Taiwan and New Zealand respectively due to the latter's reportedly stellar performance in fighting the COVID-19 pandemic.[162]

2021

  • January: Microsoft Exchange Server data breach
  • February: Anonymous announced cyber-attacks of at least five Malaysian websites. As a result, eleven individuals were nabbed as suspects.[163][164][165][166]
  • February: Hackers including those with names of "张卫能 utoyo" and "full_discl0sure" hijacked an events website Aucklife in order to craft a phony bomb threat against the Chinese consulate in Auckland, New Zealand, and also a similar facility in Sydney, Australia. Their motive was a punitive response against China due to COVID-19. As a result, a physical search was conducted at the consulate by New Zealand's Police Specialist Search Group while Aucklife owner Hailey Newton had since regained her access to the website. Wellington-based cybersecurity consultant Adam Boileau remarked that the hack isn't 'highly technical'.[167][168]
  • February: The group "Myanmar Hackers" attacked several websites belonging to Myanmar government agencies such as the Central Bank of Myanmar and the military-run Tatmadaw True News Information Team. The group also targeted the Directorate of Investment and Company Administration, Trade Department, Customs Department, Ministry of Commerce, Myawady TV and state-owned broadcaster Myanmar Radio and Television and some private media outlets. A computer technician in Yangon found that the hacks were denial-of-service attacks, while the group's motive is to protest the 2021 Myanmar coup.[169]
  • April: Over 500 million Facebook users' personal info—including info on 32 million in the United States—was discovered posted on a hackers' website, though Facebook claimed that the information was from a 2019 hack, and that the company had already taken mitigation measures; however, the company declined to say whether it had notified the affected users of the breach.[170][171][172][better source needed]
  • April: The Ivanti Pulse Connect Secure data breach of unauthorized access to the networks of high-value targets since at least June 2020 via CVE-2021-22893 across the U.S. and some E.U. nations[additional citation(s) needed] due to their use of vulnerable, proprietary software was reported.[173][174]
  • May: Operation of the U.S. Colonial Pipeline is interrupted by a ransomware cyber operation.[175]
  • May: On 21 May 2021 Air India was subjected to a cyberattack wherein the personal details of about 4.5 million customers around the world were compromised including passport, credit card details, birth dates, name and ticket information.[176][177]
  • July: On 22 July 2021 Saudi Aramco data were leaked by a third-party contractor and demanded $50 million ransom from Saudi Aramco. Saudi Aramco confirmed the incident after a hacker claimed on dark web that he had stolen 1 terabyte of data about location of oil refineries and employees data in a post that was posted on June 23.[178][179][180]
  • August: T-Mobile reported that data files with information from about 40 million former or prospective T-Mobile customers, including first and last names, date of birth, SSN, and driver's license/ID information, were compromised.[181]
  • September and October: 2021 Epik data breach. Anonymous obtained and released over 400 gigabytes of data from the domain registrar and web hosting company Epik. The data was shared in three releases between September 13 and October 4. The first release included domain purchase and transfer details, account credentials and logins, payment history, employee emails, and unidentified private keys.[182] The hackers claimed they had obtained "a decade's worth of data", including all customer data and records for all domains ever hosted or registered through the company, and which included poorly encrypted passwords and other sensitive data stored in plaintext.[182][183] The second release consisted of bootable disk images and API keys for third-party services used by Epik;[184] the third contained additional disk images and an archive of data belonging to the Republican Party of Texas, who are an Epik customer.[185]
  • October: On October 6, 2021, an anonymous 4chan reportedly hacked and leaked the source code of Twitch, as well as information on how much the streaming service paid almost 2.4 million streamers since August 2019.[186] Source code from almost 6,000 GitHub repositories was leaked, and the 4chan user said it was "part one" of a much larger release.[187]
  • November and December: On November 24th, Chen Zhaojun of Alibaba's Cloud Security Team reported a zero-day vulnerability (later dubbed Log4Shell) involving the use of arbitrary code execution in the ubiquitous Java logging framework software Log4j.[188][189][190] The report was privately disclosed to project developers of Log4j, a team at The Apache Software Foundation, on November 24. On December 8, Zhaojun contacted the developers again detailing how the vulnerability was being discussed in public security chat rooms, was already known by some security researchers, and pleaded that the team expedite the solution to the vulnerability in the official release version of Log4j.[190] Early exploitations were noticed on Minecraft servers on December 9; however, forensic analysis indicates that Log4Shell may have been exploited as early as December 1 or 2nd.[190][191][192][193] Due to the ubiquity of devices with the Log4j software (hundreds of millions) and the simplicity in executing the vulnerability, it is considered to be arguably one of the largest and most critical vulnerabilities ever.[194][195] Yet, big names in security hacking helped in regaining control over server, like Graham Ivan Clark, and Elhamy A. Elsebaey. A portion of the vulnerability was fixed in a patch distributed on December 6, three days before the vulnerability was publicly disclosed on December 9.[190][192][196][197]

2022

  • February: The German Chaos Computer Club has reported more than fifty data leaks. Government institutions and companies from various business sectors were affected. In total, the researchers had access to over 6.4 million personal data records as well as terabytes of log data and source code.[198][199]
  • March: The website of a local newspaper in Sumy, Ukraine was hacked by a person identifying themselves as "zehang陈". They claimed that they and other individuals "P_srim_asap", "Mrthanthomthebomber", "mister-handsomekai" and "RiansJohnson" had placed bombs at Chinese and Russian diplomatic facilities in Malaysia with the former containing a photo of Huanan Seafood Wholesale Market, Hong Kong's International Finance Centre and MTR Airport Station, and the headquarters office of American game company ROBLOX. Besides that, they claimed responsibility for the delivery of an envelope containing white powders against the Russian embassy in Canberra, Australia. As a result the area surrounding the embassy was briefly cordoned off.[200][201]
  • March: As a response to the 2022 Russian invasion of Ukraine, Anonymous performed many attacks against computer systems in Russia. Most notably, Anonymous committed a cyberattack against Roskomnadzor.[202]
  • April: Anonymous hacked Russian companies Aerogas, Forest, and Petrovsky Fort. From there they leaked around 437,500 emails which they donated to non-profit whistleblower organization Distributed Denial of Secrets. Furthermore, they leaked 446 GB of data from Russian Ministry of Culture.[203][204]
  • April: On April 19, Gijón City Council (Spain) was attacked by the GERVASIA computer virus and suffered data hijacking.[205]
  • May: Network Battalion 65 (NB65), a hacktivist group affiliated with Anonymous, has reportedly hacked Russian payment processor Qiwi. A total of 10.5 terabytes of data including transaction records and customers' credit cards had been exfiltrated. They further infected Qiwi with ransomwares and threatened to release more customer records.[206]
  • May: During the Victory Day in Russia, anti-war messages were inserted into Russian TV schedules including that of Russia-1, Channel 1, and NTV-Plus. One of the messages were "On your hands is the blood of thousands of Ukrainians and their hundreds of murdered children. TV and the authorities are lying. No to war."[207]
  • June: A hacker on the Breach Forums claimed to have leaked more than 1 billion people's personal records from the Shanghai National Police Database.[208]
  • August: During the visit of Speaker of the United States House of Representatives Nancy Pelosi to Taiwan, the website of Taiwan's Office of the President website was affected by a distributed denial of service attack. Anonymous then hacked into a China Heilongjiang province's Society Scientific Community Federation website and a Chinese gasoline generator factory’s website.[209][210]

See also

References

  1. ^ Marks, Paul (December 27, 2011). "Dot-dash-diss: The gentleman hacker's 1903 lulz". New Scientist. Retrieved January 11, 2012.
  2. ^ "Types of Cyber Attacks | Hacking Attacks & Techniques". Rapid7. Retrieved 2021-03-21.
  3. ^ Davis, Amanda. . Theinstitute.ieee.org. Archived from the original on August 25, 2016. Retrieved July 1, 2017.
  4. ^ "When did the term 'computer virus' arise?". Scientific American. Retrieved July 27, 2018.
  5. ^ Yagoda, Ben (March 6, 2014). "A Short History of "Hack"". Retrieved July 22, 2017.
  6. ^ "Hacking and Blue Boxes | The Story of Information". Infostory.com. November 20, 2011. Retrieved July 1, 2017.
  7. ^ Duarte, Gustavo (August 27, 2008). "First Recorded Usage of "Hacker" - Gustavo Duarte". Duartes.org. Retrieved July 1, 2017.
  8. ^ (PDF). Archived from the original (PDF) on March 14, 2016. Retrieved January 4, 2017.{{cite web}}: CS1 maint: archived copy as title (link)
  9. ^ "untitled1.html". Larch-www.lcs.mit.edu:8001. November 7, 1940. Retrieved July 1, 2017.
  10. ^ "23257: IBM 7094 CTSS System Text Editor Multiple Instance Password File Disclosure". Archived from the original on April 15, 2013. Retrieved October 8, 2010.
  11. ^ "23257 : IBM 7094 CTSS System Text Editor Multiple Instance Password File Disclosure". Archive.fo. Archived from the original on April 15, 2013. Retrieved July 1, 2017.
  12. ^ "The World's First Computer Password? It Was Useless Too". WIRED. June 19, 2011. Retrieved July 1, 2017.
  13. ^ Falkoff, A. D. (December 1, 1991). "The Family of APL Systems". IBM Systems Journal. 30 (4): 416–432. doi:10.1147/sj.304.0416. S2CID 19030940.
  14. ^ Rosenbaum, Ron (October 7, 2011). "The article that inspired Steve Jobs: "Secrets of the Little Blue Box"". Slate. Retrieved July 1, 2017.
  15. ^ . Archived from the original on March 17, 2009. Retrieved July 1, 2017.{{cite web}}: CS1 maint: bot: original URL status unknown (link)
  16. ^ a b McLellan, Vin (July 26, 1981). "Case of the Purloined Password". The New York Times. Retrieved August 11, 2015.
  17. ^ "The Greatest Hacks of All Time". WIRED. February 6, 2001.
  18. ^ Elmer-DeWitt, Philip (August 29, 1983). . Time. p. 75. Archived from the original on December 2, 2007.
  19. ^ "Beware: Hackers at play". Newsweek. September 5, 1983. pp. 42–46, 48.
  20. ^ Van Creveld, M. (2013). Wargames: from gladiators to gigabytes. Cambridge University Press.
  21. ^ "Timeline: The U.S. Government and Cybersecurity". Washington Post. 2002. Retrieved April 14, 2006.
  22. ^ Thompson, Ken (October 1983). "Reflections on Trusting Trust" (PDF). 1983 Turing Award Lecture. ACM.
  23. ^ Cornwall, Hugo. (1986). The hacker's handbook (Rev. ed.). Alexandria, Minn.: E.A. Brown Co. ISBN 0-912579-06-4. OCLC 21561291.
  24. ^ "2600: The Hacker Quarterly (Volume 2, Number 8, August 1985) | United States Postal Service | Telephone Tapping". Scribd.com. Retrieved July 1, 2017.
  25. ^ "New Jersey Statute Directory - NJSA 2C:20-25 Computer criminal activity; degree of crime; sentencing". Nj-statute-info.com. Retrieved July 1, 2017.
  26. ^ "TUCoPS :: Cyber Law :: psbust.txt". Artofhacking.com. Retrieved July 1, 2017.
  27. ^ . Archived from the original on April 26, 2012. Retrieved October 26, 2011.
  28. ^ 'Hacking' into Prestel is not a Forgery Act offence" (Law Report), The Times, July 21, 1987.
  29. ^ Stoll, Cliff (1989). The cuckoo's egg. New York: Doubleday. ISBN 0-370-31433-6.
  30. ^ Burger, R.: "Computer viruses - a high tech disease", Abacus/Data Becker GmbH (1988), ISBN 1-55755-043-3
  31. ^ Spafford, E.H.: "The Internet Worm Program: An Analysis", Purdue Technical Report CSD-TR-823 (undated)
  32. ^ Eichin, M.W. and Rochlis, J.A.: "With Microscope and Tweezers: An Analysis of the Internet Virus of November 1988", MIT(1989)
  33. ^ "Computer Intruder is Put on Probation and Fined" by John Markoff, The New York Times. The total fine ran to $13,326, which included a $10,000 fine, $50 special assessment, and $3,276 cost of probation oversight.
  34. ^ Bill Apro & Graeme Hammond (2005). Hackers: The Hunt for Australia's Most Infamous Computer Cracker. Five Mile Press. ISBN 1-74124-722-5.
  35. ^ Easttom, C (2018). "An Examination of the Operational Requirements of Weaponised Malware". Journal of Information Warfare. 17: 1–15. ProQuest 2137386551 – via ProQuest.
  36. ^ Esquibel, Bruce (October 8, 1994). . Electronic Frontier Foundation. Archived from the original on August 10, 2011. Retrieved March 8, 2009.
  37. ^ Poulsen, Kevin (January 21, 2000). "The case of the kung fu 'phreak'". ZDNet. Retrieved May 12, 2015.
  38. ^ "Recent Large Name Phreaker Busts by Anonymous". EmpireTimes. March 11, 1995.
  39. ^ Office, United States General Accounting (1996). Information Security: Computer Attacks at Department of Defense Pose Increasing Risks : Report to Congressional Requesters. The Office. p. 2.
  40. ^ United States Congress Senate Committee on Governmental Affairs Permanent Subcommittee on Investigations (1996). Security in Cyberspace: Hearings Before the Permanent Subcommittee on Investigations of the Committee on Governmental Affairs, United States Senate, One Hundred Fourth Congress, Second Session, May 22, June 5, 25, and July 16, 1996. U.S. Government Printing Office. p. 424. ISBN 978-0-16-053913-8.
  41. ^ Holt, Thomas J.; Bossler, Adam M.; Seigfried-Spellar, Kathryn C. (2017). Cybercrime and Digital Forensics: An Introduction. Routledge. ISBN 978-1-315-29695-1.
  42. ^ Wang, Shuangbao Paul; Ledley, Robert S. (2013). Computer Architecture and Security: Fundamentals of Designing Secure Computer Systems. John Wiley & Sons. p. 29. ISBN 978-1-118-16881-3.
  43. ^ A. Young, M. Yung. "Cryptovirology: Extortion-Based Security Threats and Countermeasures". IEEE Symposium on Security & Privacy, May 6–8, 1996. pp. 129–141. IEEEExplore: Cryptovirology: extortion-based security threats and countermeasures
  44. ^ , Committee on Information Systems Trustworthiness, National Research Council, 1999
  45. ^ Hackers jam Microsoft's site, 1997
  46. ^ Associated Press (December 10, 1997). "Hackers Leave Ransom Note on Yahoo Site". Retrieved May 19, 2017.
  47. ^ "Pentagon Deflects Web Assault | WIRED". Wired. September 10, 1998. Retrieved July 1, 2017.
  48. ^ . CNN. February 6, 2003. Archived from the original on 2003-02-06.
  49. ^ . USDOJ. September 16, 1999. Archived from the original on May 31, 2009.
  50. ^ "FBI sting snares top Russian crackers". The Register.
  51. ^ "Get Online Safety Resources from the National Cyber Security Alliance".
  52. ^ "Police called after National Party website hacked". NZ Herald. March 15, 2004.
  53. ^ . Pravda Online. Archived from the original on August 6, 2007. Retrieved October 14, 2008.
  54. ^ Rob Lemos. "Campaign seeks to defang Rafa's hacker image", "Security Focus", April 11, 2005.
  55. ^ Krebs, Brian. "Teen Pleads Guilty to Hacking Paris Hilton's Phone", The Washington Post, September 13, 2005.
  56. ^ Iain Thomson (November 4, 2005). . vnunet.com. Archived from the original on December 20, 2007. Retrieved September 26, 2008.
  57. ^ a b . Archived from the original on September 27, 2007. Retrieved May 3, 2007.
  58. ^ "World Record : 404907 websites hacked by Iskorpitx (Turkish Hacker) !". The Hacker News. Retrieved 2022-05-01.
  59. ^ McMillan, Robert (September 24, 2010). "Man gets 10 years for VoIP hacking". Computerworld. Retrieved May 27, 2019.
  60. ^ Kirk, Jeremy (May 17, 2007). . Network World. Archived from the original on December 3, 2013. Retrieved March 14, 2015.
  61. ^ Cooney, Michael (June 13, 2007). "FBI: Operation Bot Roast finds over 1 million botnet victims". Network World. Retrieved March 14, 2015.
  62. ^ McMillan, Robert (June 21, 2007). . InfoWorld. IDG. Archived from the original on July 6, 2008. Retrieved March 10, 2008.
  63. ^ Aitoro, Jill R. (March 5, 2008). "Defense officials still concerned about data lost in 2007 network attack". Government Executive. National Journal Group. Retrieved March 10, 2008.
  64. ^ . Internethaber. Archived from the original on September 30, 2011. Retrieved March 14, 2015.
  65. ^ Gradijan, Dave (February 13, 2007). "Eight Arrested for Creating Panda Burning Incense Virus". CSO Online. Retrieved July 20, 2019.
  66. ^ "Chinese hackers: No site is safe". CNN. March 7, 2008. Retrieved March 7, 2008.
  67. ^ Hoffman, Stefanie (March 14, 2008). "Trend Micro Victim Of Malicious Hack". CRN. Retrieved March 14, 2015.
  68. ^ Markoff, John (August 26, 2009). "Defying Experts, Rogue Computer Code Still Lurks". New York Times. Retrieved August 27, 2009.
  69. ^ "A new approach to China". Google Inc. January 12, 2010. Retrieved January 17, 2010.
  70. ^ Broad, William J.; Sanger, David E. (November 18, 2010). "Worm in Iran Can Wreck Nuclear Centrifuges". The New York Times.
  71. ^ Kumar, Mohit (March 26, 2011). "Thousands of Bank of America Accounts Hacked !". The Hacker News - Biggest Information Security Channel. Retrieved March 14, 2015.
  72. ^ "PlayStation data breach deemed in 'top 5 ever' - Business - CBC News". Cbc.ca. April 27, 2011. Retrieved April 29, 2011.
  73. ^ Is Department of Defense (DoD), Pentagon, NASA, NSA secure?, TheHackerNews, May 14, 2011.
  74. ^ Kovacs, Eduard (September 26, 2011). "700,000 InMotion Websites Hacked by TiGER-M@TE". softpedia. Retrieved March 14, 2015.
  75. ^ John P. Mello Jr. "Sesame Street Hacked, Porn Posted". PC World. Retrieved October 26, 2011.
  76. ^ Ashkar, Alaa. "PA Telecommunications minister: Palestinian Internet Under Hacking Attacks". IMEMC. Retrieved November 2, 2011.
  77. ^ Ashcraft, Brian (7 November 2011). "Steam Forums Apparently Hacked". Kotaku.
  78. ^ Jonas Sverrisson Rasch. "News article about the arrests of Noria". Dagbladet. Retrieved December 14, 2012.
  79. ^ Flock, Elizabeth (January 3, 2012). "Saudi hackers say they published Israeli credit card information". The Washington Post.
  80. ^ Kosovo Hacker Threatens to Release 1 Million Israeli Credit Card Numbers, Curt Hopkins, January 6, 2012
  81. ^ "Israeli hacker retaliates to credit card hacking". BBC News. January 12, 2012.
  82. ^ Reuters Staff (2014-10-31). "Pirate Bay co-founder sentenced to 42 months in jail in Denmark". Reuters. Retrieved 2021-08-05.
  83. ^ Kripos. . Kripos. Archived from the original on July 28, 2013. Retrieved April 25, 2012.
  84. ^ "Marriott, Hack, Extortion, Arrest and important websites hacked". February 3, 2012.
  85. ^ Garside, Juliette (February 9, 2012). "Apple supplier Foxconn hacked in factory conditions protest". The Guardian. London.
  86. ^ "Com.tr'ler nasıl hacklendi?". CNNTurk. May 4, 2012.
  87. ^ "Türk hacker'lar com.tr uzantılı sitelere saldırdı". Hurriyet. May 4, 2012.
  88. ^ "Nic.tr Sistemlerine Sızılınca, '.tr' Uzantılı Siteler Başka Yerlere Yönlendirildi". Turk-Internet. May 4, 2012.
  89. ^ "Google, Microsoft, Yandex, Paypal and important websites hacked Zone-H Mirror". May 4, 2012.
  90. ^ "Jose Pagliery: The inside story of the biggest hack in history". August 5, 2015. Retrieved August 19, 2012.
  91. ^ . Archived from the original on March 4, 2016. Retrieved June 15, 2015.
  92. ^ "Hackers Stole 65 Million Passwords From Tumblr, New Analysis Reveals - Motherboard". Motherboard.vice.com. May 30, 2016. Retrieved July 1, 2017.
  93. ^ "The Inside Story of Mt. Gox, Bitcoin's $460 Million Disaster - WIRED". WIRED. March 3, 2014. Retrieved March 14, 2015.
  94. ^ "White House computer network 'hacked' - BBC". BBC. October 29, 2014. Retrieved November 6, 2015.
  95. ^ Evan Perez; Shimon Prokupecz (April 8, 2015). "How the U.S. thinks Russians hacked the White House". CNN. Retrieved December 17, 2016. Russian hackers behind the damaging cyber intrusion of the State Department in recent months used that perch to penetrate sensitive parts of the White House computer system, according to U.S. officials briefed on the investigation.
  96. ^ Michael Angelo Santos. "Globe Website was Hacked by Blood Sec Hackers". Coorms.
  97. ^ Zengerle, Patricia; Cassella, Megan (July 9, 2015). "Estimate of Americans hit by government personnel data hack skyrockets". Reuters. Retrieved July 9, 2015.
  98. ^ Barrett, Devlin (June 5, 2015). "U.S. Suspects Hackers in China Breached About four (4) Million People's Records, Officials Say". Wall Street Journal. Retrieved June 5, 2015.
  99. ^ Sanders, Sam (June 4, 2015). "Massive Data Breach Puts 4 Million Federal Employees' Records At Risk". NPR. Retrieved June 5, 2015.
  100. ^ "ISIL-Linked Kosovo Hacker Sentenced to 20 Years in Prison". Justice Department of the United States. September 23, 2016.
  101. ^ Romm, Tony; Geller, Eric. "WikiLeaks supporters claim credit for massive U.S. cyberattack, but researchers skeptical". POLITICO. Retrieved October 22, 2016.
  102. ^ Larson, Selena (November 22, 2017). "Uber's massive hack: What we know". CNNMoney. Retrieved June 20, 2019.
  103. ^ Mussa, Matthew (April 30, 2017). "'The Dark Overlord', Netflix Hacker: 5 Fast Facts You Need to Know". Heavy.com. Retrieved July 1, 2017.
  104. ^ Brenner, Bill (May 16, 2017). "WannaCry: the ransomware worm that didn't arrive on a phishing hook". Naked Security. Retrieved May 18, 2017.
  105. ^ "Cyber-attack: Europol says it was unprecedented in scale". BBC News. May 13, 2017. Retrieved May 18, 2017.
  106. ^ a b c Hern, Alex. "Hackers publish private photos from cosmetic surgery clinic | Technology". The Guardian. Retrieved May 31, 2017.
  107. ^ "Plastic surgery clinics hacked; 25,000 photos, data online". The Seattle Times. Retrieved May 31, 2017.
  108. ^ . Abcnews.go.com. Archived from the original on May 31, 2017. Retrieved May 31, 2017.
  109. ^ "Global ransomware attack causes chaos". BBC News. June 27, 2017. Retrieved June 27, 2017.
  110. ^ Constantin, Lucian (April 10, 2019). "Group behind TRITON industrial sabotage malware made more victims". CSO Online. Retrieved July 17, 2019.
  111. ^ "The HBO Hackers Are Demanding $7.5 Million to Stop Leaking Game of Thrones". 8 August 2017.
  112. ^ Haselton, Todd (September 7, 2017). "Credit reporting firm Equifax says data breach could potentially affect 143 million US consumers". cnbc.com. Retrieved October 16, 2017.
  113. ^ Hopkins, Nick (September 25, 2017). "Deloitte hit by cyber-attack revealing clients' secret emails". Theguardian.com. Retrieved October 16, 2017.
  114. ^ Stack, Liam (December 6, 2017). "North Carolina County Refuses to Pay $23,000 Ransom to Hackers". The New York Times. ISSN 0362-4331. Retrieved June 20, 2019.
  115. ^ McWhirter, Joseph De Avila and Cameron (23 March 2018). "Atlanta Hit With Cyberattack". Wall Street Journal. Retrieved June 20, 2019.
  116. ^ "Two Iranians Indicted in Atlanta on Cyber Crime Charges". Wall Street Journal. Associated Press. 5 December 2018. Retrieved June 20, 2019.
  117. ^ Adams, Ian (May 1, 2018). "Wasaga Beach town hall computers seized by hackers". Simcoe.com. Retrieved June 20, 2019.
  118. ^ "Facebook Was Hacked. 3 Things You Should Do After the Breach. The social networking giant said attackers had exploited a weakness that enabled them to hijack the accounts of nearly 50 million users. Here are some tips for securing your account," September 28, 2018, New York Times, retrieved April 15, 2021
  119. ^ "Facebook says hackers accessed phone numbers, email addresses as part of latest breach," October 12, 2018, Fox News, retrieved April 15, 2021
  120. ^ Rondinone, Nicholas. "Hackers Target Connecticut City, Force Officials To Pay $2,000 Ransom". courant.com. Retrieved June 20, 2019.
  121. ^ "Feds indict ransomware hackers of Allscripts, others". Modern Healthcare. November 29, 2018. Retrieved June 20, 2019.
  122. ^ Cimpanu, Catalin. "Georgia county pays a whopping $400,000 to get rid of a ransomware infection". ZDNet. Retrieved June 20, 2019.
  123. ^ "City of Albany experiences cyber attack". WRGB. March 30, 2019. Retrieved June 20, 2019.
  124. ^ Moench, Mallory (March 31, 2019). "Albany cyber attack affecting records, police". Times Union. Retrieved June 20, 2019.
  125. ^ "Augusta city offices hit by computer virus". Newscentermaine.com. 20 April 2019. Retrieved June 20, 2019.
  126. ^ "Hacker wanted more than $100K to restore Maine city's computers". Bangor Daily News. 29 April 2019. Retrieved June 20, 2019.
  127. ^ "FBI now investigating "RobinHood" ransomware attack on Greenville computers". www.witn.com. Retrieved June 20, 2019.
  128. ^ "A Closer Look at the RobbinHood Ransomware". BleepingComputer.
  129. ^ Shalby, Colleen (April 18, 2019). "Ryuk malware hacked a county government website. It's been down for 6 days". Los Angeles Times. Retrieved June 20, 2019.
  130. ^ Chokshi, Niraj (May 22, 2019). "Hackers Are Holding Baltimore Hostage: How They Struck and What's Next". The New York Times. ISSN 0362-4331. Retrieved June 20, 2019.
  131. ^ Campbell, Ian Duncan, Colin. "Baltimore city government computer network hit by ransomware attack". baltimoresun.com. Retrieved June 20, 2019.
  132. ^ Zhang, Ian Duncan, Christine. "Analysis of ransomware used in Baltimore attack indicates hackers needed 'unfettered access' to city computers". baltimoresun.com. Retrieved June 20, 2019.
  133. ^ Kamp, Scott Calvert and Jon (7 June 2019). "Hackers Won't Let Up in Their Attack on U.S. Cities". Wall Street Journal. Retrieved June 20, 2019.
  134. ^ Karimi, Faith (20 June 2019). "Florida city to pay $600K ransom to hacker who seized computer systems weeks ago". CNN. Retrieved June 20, 2019.
  135. ^ "Radiohead releases 'OK Computer' sessions that hacker tried to ransom". Naked Security. June 12, 2019. Retrieved June 20, 2019.
  136. ^ "Anonymous Hacks China As Chinese Military Moves On Hong Kong, Students Trapped at Polytechnic University". Activist Post. November 19, 2019. Retrieved August 25, 2020.
  137. ^ Everington, Keoni (5 February 2020). "Anonymous creates pro-Taiwan page inside UN website". www.taiwannews.com.tw. Taiwan News. Retrieved February 5, 2020.
  138. ^ "Variety".
  139. ^ Jaiswal, Priya (May 6, 2020). "UP: 23-year-old man poses as police official to get mobile phone repaired, lands in lockup". www.indiatvnews.com. Retrieved August 14, 2020.
  140. ^ "Anonymous Stole and Leaked a Megatrove of Police Documents". Wired. Retrieved June 26, 2020.
  141. ^ "An Interview With Anonymous - George Floyd Protests, Hacks, And Press Freedom". Activist Post. June 23, 2020. Retrieved June 26, 2020.
  142. ^ "Anonymous Strike Back At Buffalo PD After Shoving Incident". HotNewHipHop. 6 June 2020. Retrieved June 6, 2020.
  143. ^ "@GroupAnon: "#TangoDown again. Those lasers are firing hot."". Twitter. Retrieved June 6, 2020.
  144. ^ "Anonymous hack Chicago police radios to play NWA's 'Fuck Tha Police'". NME Music News, Reviews, Videos, Galleries, Tickets and Blogs | NME.COM. June 1, 2020. Retrieved June 26, 2020.
  145. ^ "Roblox accounts hacked to support Donald Trump". BBC News. June 30, 2020. Retrieved August 13, 2020.
  146. ^ "Wattpad data breach exposes account info for millions of users". BleepingComputer. Retrieved August 14, 2020.
  147. ^ "Everything We Know About the Reddit Hack, Including Who Is Claiming Responsibility". Newsweek. 7 August 2020. Retrieved August 11, 2020.
  148. ^ "Einmal zum Mond und wieder zurück – Hacker der Hochschule Bonn-Rhein erfolgreich beim Hack-A-Sat". idw-online.de (in German). Retrieved August 16, 2020.
  149. ^ "The Race to Hack a Satellite at DEF CON". Dark Reading. 13 August 2020. Retrieved August 16, 2020.
  150. ^ . August 18, 2020. Archived from the original on 2020-08-18. Retrieved August 25, 2020.
  151. ^ Socookre. . Archived from the original on 2020-08-25. Retrieved August 25, 2020.
  152. ^ Farrer, Martin (26 August 2020). "New Zealand stock exchange hit by cyber attack for second day". The Guardian. Retrieved 11 September 2020.
  153. ^ Eddy, Melissa; Perlroth, Nicole (18 September 2020). "Cyber Attack Suspected in German Woman's Death". The New York Times. Retrieved 19 September 2020.
  154. ^ Perlroth, Nicole (2020-10-28). "Officials Warn of Cyberattacks on Hospitals as Virus Cases Spike: Government officials warned that hackers were seeking to hold American hospitals' data hostage in exchange for ransom payments". The Coronavirus Outbreak. The New York Times. from the original on 2020-11-03.
  155. ^ Sanger, David E.; Perlroth, Nicole (2020-10-12). "Microsoft Takes Down a Risk to the Election, and Finds the U.S. Doing the Same: Fearing Russian ransomware attacks on the election, the company and U.S. Cyber Command mounted similar pre-emptive strikes. It is not clear how long they may work". US Politics. The New York Times (October 21, 2020 ed.). from the original on 2020-11-04.
  156. ^ Krebs, Christopher Cox (2020-11-29). "Fired director of U.S. cyber agency Chris Krebs explains why President Trump's claims of election interference are false". In Pelley, Scott Cameron (ed.). 60 Minutes. Season 53. Episode 13. Event occurs at 11:30. CBS. from the original on 2020-12-02. It was quiet. There was no indication or evidence that there was any sort of hacking or compromise of election systems on, before, or after November third.
  157. ^ Bing, Christopher (13 December 2020). "Suspected Russian hackers spied on U.S. Treasury emails - sources". Reuters.
  158. ^ ArcTitan (2021-02-21). "U.S. Treasury Hit by Email Hacks". ArcTitan. Retrieved 2021-03-16.
  159. ^ @nyc311 (December 6, 2020). (Tweet). Archived from the original on 6 December 2020 – via Twitter.
  160. ^ "Plane Lands Safely at JFK Airport After Report of Bomb Threat: Officials". NBC New York. Retrieved 12 December 2020.
  161. ^ "Aeroflot Boeing 777 Evacuated After New York Bomb Threat". Simple Flying. 7 December 2020. Retrieved 12 December 2020.
  162. ^ . Daily Kos. 28 December 2020. Archived from the original on 2020-12-28. Retrieved 29 December 2020.
  163. ^ "'Anonymous Malaysia' hackers say they defaced five government websites | Coconuts KL". Coconuts. 1 February 2021. Retrieved 19 February 2021.
  164. ^ Ar, Zurairi (25 January 2021). "Hacktivist group Anonymous Malaysia resurfaces, vows cyber-attack against govt over data breaches | Malay Mail". www.malaymail.com. Retrieved 19 February 2021.
  165. ^ Cimpanu, Catalin. "Malaysia arrests 11 suspects for hacking government sites". ZDNet. Retrieved 19 February 2021.
  166. ^ "11 suspects of 'Anonymous Malaysia' hacker group nabbed | The Star". www.thestar.com.my. Retrieved 19 February 2021.
  167. ^ "Police search Chinese Consulate in Auckland after bomb threat". Stuff. 5 February 2021. Retrieved 5 February 2021.
  168. ^ . 4 February 2021. Archived from the original on 2021-02-04. Retrieved 20 February 2021.
  169. ^ "Myanmar Hackers Take Down Military-Run Websites". The Irrawaddy. 17 February 2021. Retrieved 19 February 2021.
  170. ^ "Cybersecurity: Millions of Facebook accounts hacked," April 5, 2021, KTNV-TV, Las Vegas, Nevada, retrieved April 15, 2021
  171. ^ "Facebook hack How to find out if you were one of the 533 million Facebook users hacked,", Fox5 TV, San Diego, California, retrieved April 15, 2021
  172. ^ "2021-04-13 Facebook data breach explained: How the world’s largest social media platform got hacked," April 13, 2021, Times of India, retrieved April 15, 2021
  173. ^ Goodin, Dan (30 April 2021). "More US agencies potentially hacked, this time with Pulse Secure exploits". Ars Technica. Retrieved 9 May 2021.
  174. ^ "Check Your Pulse: Suspected APT Actors Leverage Authentication Bypass Techniques and Pulse Secure Zero-Day". FireEye. Retrieved 9 May 2021.
  175. ^ "Cyber attack shuts down U.S. fuel pipeline 'jugular,' Biden briefed". Reuters. 2021-05-08. Retrieved 13 June 2021.
  176. ^ "Explained: What is the data breach that has hit Air India customers?". The Indian Express. 2021-05-22. Retrieved 2021-05-23.
  177. ^ "Air India cyberattack: Personal data of over 4.5 million passengers leaked". The Irish Times. Retrieved 2021-05-23.
  178. ^ "Saudi Aramco confirms data leak after $50 million cyber ransom demand". ARS Technica. 2021-07-22. Retrieved 2021-07-22.
  179. ^ "Hackers reportedly demand $50m from Saudi Aramco over data leak". BBC. 2021-07-22.
  180. ^ "Saudi Aramco Confirms Data Leak After Reported Cyber Ransom". bloomberg. 2021-07-22.
  181. ^
    • "T‑Mobile Shares Updated Information Regarding Ongoing Investigation into Cyberattack | T‑Mobile Newsroom". T-Mobile Newsroom.
    • Krebs, Brian. "T-Mobile: Breach Exposed SSN/DOB of 40M+ People – Krebs on Security".
    • Vaas, Lisa. "T-Mobile: >40 Million Customers' Data Stolen". threatpost.com.
    • Hill, Michael (27 August 2021). "The T-Mobile data breach: A timeline". CSO Online.
  182. ^ a b Goforth, Claire (September 14, 2021). "Anonymous to release massive data set of the far-right's preferred web hosting company". The Daily Dot. Retrieved September 14, 2021.{{cite web}}: CS1 maint: url-status (link)
  183. ^ Cimpanu, Catalin (September 15, 2021). "Anonymous hacks and leaks data from domain registrar Epik". The Record by Recorded Future. Retrieved September 16, 2021.{{cite web}}: CS1 maint: url-status (link)
  184. ^ Thalen, Mikael (September 29, 2021). "New leak of Epik data exposes company's entire server". The Daily Dot. Retrieved September 29, 2021.{{cite web}}: CS1 maint: url-status (link)
  185. ^ Thalen, Mikael (October 4, 2021). "Anonymous releases data on Texas GOP in latest Epik hack dump". The Daily Dot. Retrieved October 4, 2021.{{cite web}}: CS1 maint: url-status (link)
  186. ^ Warren, Tom (2021-10-06). "Twitch source code and creator payouts part of massive leak". The Verge. Retrieved 2021-10-07.
  187. ^ Browning, Kellen (2021-10-06). "A 'potentially disastrous' data breach hits Twitch, the livestreaming site". The New York Times. ISSN 0362-4331. Retrieved 2021-10-07.
  188. ^ Wortley, Free; Thrompson, Chris; Allison, Forrest (9 December 2021). "Log4Shell: RCE 0-day exploit found in log4j 2, a popular Java logging package". LunaSec. Retrieved 12 December 2021.
  189. ^ "CVE-2021-44228". Common Vulnerabilities and Exposures. Retrieved 12 December 2021.
  190. ^ a b c d Turton, William; Gillum, Jack; Robertson, Jordan. "Inside the Race to Fix a Potentially Disastrous Software Flaw". www.bloomberg.com.
  191. ^ Duckett, Chris. "Log4j RCE activity began on December 1 as botnets start using vulnerability". ZDNet. Cisco Talos said in a blog post that it observed activity for the vulnerability known as CVE-2021-44228 from December 2, and those looking for indicators of compromise should extend their searches to at least that far back.
  192. ^ a b Berger, Andreas (17 December 2021). "What is Log4Shell? The Log4j vulnerability explained (and what to do about it)". Dynatrace news.
  193. ^ Prince, Matthew. "Tweet". Twitter. Earliest evidence we’ve found so far of #Log4J exploit is 2021-12-01 04:36:50 UTC. That suggests it was in the wild at least 9 days before publicly disclosed. However, don’t see evidence of mass exploitation until after public disclosure.
  194. ^ The top U.S. cybersecurity defense official, Jen Easterly, deemed the flaw “one of the most serious I’ve seen in my entire career, if not the most serious”:
    • Woodyard, Chris. "'Critical vulnerability': Smaller firms may find it harder to stop hackers from exploiting Log4j flaw". USA Today. Retrieved 2021-12-17.{{cite web}}: CS1 maint: url-status (link)
    • "Expert discusses what you need to know about 'most serious' security breach ever". ABC7 San Francisco. Associated Press. 20 December 2021.
    • "Chinese and Iranian hackers exploit Log4j computer flaw, affecting hundreds of millions". Associated Press. 15 December 2021.
    • Starks, Tim (13 December 2021). "CISA warns 'most serious' Log4j vulnerability likely to affect hundreds of millions of devices". CyberScoop.
  195. ^ * Goodin, Dan (2021-12-13). "As Log4Shell wreaks havoc, payroll service reports ransomware attack". Ars Technica. Retrieved 2021-12-17. arguably the most severe vulnerability ever{{cite web}}: CS1 maint: url-status (link)
    • Barrett, Brian. "The Next Wave of Log4J Attacks Will Be Brutal". Wired. ISSN 1059-1028. Retrieved 2021-12-17.
    • Hunter, Tatum; de Vynck, Gerrit (20 December 2021). "The 'most serious' security breach ever is unfolding right now. Here's what you need to know". The Washington Post.{{cite news}}: CS1 maint: url-status (link)
  196. ^ Rudis, boB (10 December 2021). "Widespread Exploitation of Critical Remote Code Execution in Apache Log4j | Rapid7 Blog". Rapid7.
  197. ^ "Restrict LDAP access via JNDI by rgoers #608". Log4j. 5 December 2021. Retrieved 12 December 2021 – via GitHub.
  198. ^ tweakers (2022-02-14). "Hackersclub CCC vindt 6,4 miljoen persoonsgegevens via vijftigtal datalekken" (in Dutch). Retrieved 2022-02-17.
  199. ^ Chaos Computer Club (2022-02-14). "Chaos Computer Club meldet 6,4 Millionen Datensätze in über 50 Leaks" (in German). Retrieved 2022-02-17.
  200. ^ . Трибуна (in Ukrainian). Archived from the original on 9 March 2022. Retrieved 9 March 2022.
  201. ^ Wu, Crystal (3 March 2022). "Australian Russian Embassy evacuated after 'suspicious package' delivered". skynews. Retrieved 9 March 2022.
  202. ^ "Anonymous hacks Russian federal agency, releases 360,000 documents". The Jerusalem Post | Jpost.com. Retrieved 6 April 2022.
  203. ^ "Anonymous Hits 3 Russian Entities, Leaks 400 GB Worth of Emails". 12 April 2022. Retrieved 12 April 2022.
  204. ^ "Anonymous Hits Russian Ministry of Culture- Leaks 446GB of Data". 12 April 2022. Retrieved 13 April 2022.
  205. ^ "Gijón City Council (Spain) was attacked by GERVASIA". 19 April 2022. Retrieved 19 April 2022.
  206. ^ "Anonymous NB65 Claims Hack on Russian Payment Processor Qiwi". 9 May 2022. Retrieved 9 May 2022.
  207. ^ Jankowicz, Mia. "Hackers replaced Russian TV schedules during Putin's 'Victory Day' parade with anti-war messages, saying the blood of Ukrainians is on Russians' hands". Business Insider. Retrieved 9 May 2022.
  208. ^ "Hacker claims to have obtained data on 1 billion Chinese citizens". the Guardian. 2022-07-04. Retrieved 2022-07-09.
  209. ^ Everington, Keoni (3 August 2022). "Anonymous welcomes Nancy Pelosi to Taiwan on hacked Chinese government website | Taiwan News | 2022-08-03 15:29:00". Taiwan News. Retrieved 23 August 2022.
  210. ^ Everington, Keoni (9 August 2022). "Anonymous thanks Pelosi for Taiwan trip on hacked Chinese website | Taiwan News | 2022-08-09 18:58:00". Taiwan News. Retrieved 23 August 2022.

Further reading

  • Lundell, Allan (1989). Virus! The secret world of computer invaders that breed and destroy. Wayne A. Yacco. ISBN 0-8092-4437-3.
  • Landreth, Bill (1985). Out of the Inner Circle. Tempus Books of Microsoft Press. ISBN 1-55615-223-X.
  • Bowcott, Owen; Hamilton, Sally (1990). Beating the System: Hackers, phreakers and electronic spies. Bloomsbury. ISBN 0-7475-0513-6.
  • Fites, Philip; Johnston, Peter; Kratz, Martin (1989). The computer virus crisis. Van Nostrand Reinhold. ISBN 0-442-28532-9.
  • Sterling, Bruce (1992). The Hacker Crackdown: Law and disorder on the electronic frontier. Penguin. ISBN 0-14-017734-5.
  • Gold, Steve (1989). Hugo Cornwall's New Hacker's Handbook. London: Century Hutchinson Ltd. ISBN 0-7126-3454-1.

list, security, hacking, incidents, list, security, hacking, incidents, covers, important, noteworthy, events, history, security, hacking, cracking, contents, 1900, 1903, 1930s, 1932, 1939, 1940s, 1943, 1949, 1950s, 1955, 1957, 1960s, 1963, 1965, 1967, 1970s, . The list of security hacking incidents covers important or noteworthy events in the history of security hacking and cracking Contents 1 1900 1 1 1903 2 1930s 2 1 1932 2 2 1939 3 1940s 3 1 1943 3 2 1949 4 1950s 4 1 1955 4 2 1957 5 1960s 5 1 1963 5 2 1965 5 3 1967 6 1970s 6 1 1971 6 2 1979 7 1980s 7 1 1980 7 2 1981 7 3 1983 7 4 1984 7 5 1985 7 6 1986 7 7 1987 7 8 1988 7 9 1989 8 1990s 8 1 1990 8 2 1992 8 3 1993 8 4 1994 8 5 1995 8 6 1996 8 7 1997 8 8 1998 8 9 1999 9 2000s 9 1 2000 9 2 2001 9 3 2002 9 4 2003 9 5 2004 9 6 2005 9 7 2006 9 8 2007 9 9 2008 9 10 2009 10 2010s 10 1 2010 10 2 2011 10 3 2012 10 4 2013 10 5 2014 10 6 2015 10 7 2016 10 8 2017 10 9 2018 10 10 2019 11 2020s 11 1 2020 11 2 2021 11 3 2022 12 See also 13 References 14 Further reading1900 Edit1903 Edit Magician and inventor Nevil Maskelyne disrupts John Ambrose Fleming s public demonstration of Guglielmo Marconi s purportedly secure wireless telegraphy technology sending insulting Morse code messages through the auditorium s projector 1 1930s Edit1932 Edit Polish cryptologists Marian Rejewski Henryk Zygalski and Jerzy Rozycki broke the Enigma machine code 2 1939 Edit Alan Turing Gordon Welchman and Harold Keen worked together to develop the Bombe on the basis of Rejewski s works on Bomba The Enigma machine s use of a reliably small key space makes it vulnerable to brute force 1940s Edit1943 Edit Rene Carmille comptroller general of the Vichy French Army hacked the punched card system used by the Nazis to locate Jews 3 1949 Edit The theory that underlies computer viruses was first made public in 1949 when computer pioneer John von Neumann presented a paper titled Theory and Organization of Complicated Automata In the paper von Neumann speculated that computer programs could reproduce themselves 4 1950s Edit1955 Edit At MIT hack first came to mean fussing with machines The minutes of an April 1955 meeting of the Tech Model Railroad Club state that Mr Eccles requests that anyone working or hacking on the electrical system turn the power off to avoid fuse blowing 5 1957 Edit Joe Joybubbles Engressia a blind seven year old boy with perfect pitch discovered that whistling the fourth E above middle C a frequency of 2600 Hz would interfere with AT amp T s automated telephone systems thereby inadvertently opening the door for phreaking 1960s EditVarious phreaking boxes are used to interact with automated telephone systems 1963 Edit The first ever reference to malicious hacking is telephone hackers in MIT s student newspaper The Tech of hackers tying up the lines with Harvard configuring the PDP 1 to make free calls war dialing and accumulating large phone bills 6 7 8 1965 Edit William D Mathews from MIT found a vulnerability in a CTSS running on an IBM 7094 The standard text editor on the system was designed to be used by one user at a time working in one directory and so created a temporary file with a constant name for all instantiations of the editor The flaw was discovered when two system programmers were editing at the same time and the temporary files for the message of the day and the password file became swapped causing the contents of the system CTSS password file to display to any user logging into the system 9 10 11 12 1967 Edit The first known incidence of network penetration hacking took place when members of a computer club at a suburban Chicago area high school were provided access to IBM s APL network In the Fall of 1967 IBM through Science Research Associates approached Evanston Township High School with the offer of four 2741 Selectric teletypewriter based terminals with dial up modem connectivity to an experimental computer system which implemented an early version of the APL programming language The APL network system was structured in Workspaces which were assigned to various clients using the system Working independently the students quickly learned the language and the system They were free to explore the system often using existing code available in public Workspaces as models for their own creations Eventually curiosity drove the students to explore the system s wider context This first informal network penetration effort was later acknowledged as helping harden the security of one of the first publicly accessible networks 13 Science Research Associates undertook to write a full APL system for the IBM 1500 They modeled their system after APL 360 which had by that time been developed and seen substantial use inside of IBM using code borrowed from MAT 1500 where possible In their documentation they acknowledge their gratitude to a number of high school students for their compulsion to bomb the system This was an early example of a kind of sportive but very effective debugging that was often repeated in the evolution of APL systems 1970s Edit1971 Edit John T Draper later nicknamed Captain Crunch his friend Joe Engressia also known as Joybubbles and blue box phone phreaking hit the news with an Esquire magazine feature story 14 1979 Edit Kevin Mitnick breaks into his first major computer system the Ark the computer system Digital Equipment Corporation DEC used for developing their RSTS E operating system software 15 1980s Edit1980 Edit The FBI investigates a breach of security at National CSS NCSS The New York Times reporting on the incident in 1981 describes hackers as 16 technical experts skilled often young computer programmers who almost whimsically probe the defenses of a computer system searching out the limits and the possibilities of the machine Despite their seemingly subversive role hackers are a recognized asset in the computer industry often highly prizedThe newspaper describes white hat activities as part of a mischievous but perversely positive hacker tradition When a National CSS employee revealed the existence of his password cracker which he had used on customer accounts the company chastised him not for writing the software but for not disclosing it sooner The letter of reprimand stated that The Company realizes the benefit to NCSS and in fact encourages the efforts of employees to identify security weaknesses to the VP the directory and other sensitive software in files 16 1981 Edit Chaos Computer Club forms in Germany Ian Murphy aka Captain Zap was the first cracker to be tried and convicted as a felon Murphy broke into AT amp T s computers in 1981 and changed the internal clocks that metered billing rates People were getting late night discount rates when they called at midday Of course the bargain seekers who waited until midnight to call long distance were hit with high bills 17 1983 Edit The 414s break into 60 computer systems at institutions ranging from the Los Alamos National Laboratory to Manhattan s Memorial Sloan Kettering Cancer Center 18 The incident appeared as the cover story of Newsweek with the title Beware Hackers at play 19 As a result the U S House of Representatives held hearings on computer security and passed several laws The group KILOBAUD is formed in February kicking off a series of other hacker groups which form soon after The movie WarGames introduces the wider public to the phenomenon of hacking and creates a degree of mass paranoia of hackers and their supposed abilities to bring the world to a screeching halt by launching nuclear ICBMs 20 The U S House of Representatives begins hearings on computer security hacking 21 In his Turing Award lecture Ken Thompson mentions hacking and describes a security exploit that he calls a Trojan horse 22 1984 Edit Someone calling himself Lex Luthor founds the Legion of Doom Named after a Saturday morning cartoon the LOD had the reputation of attracting the best of the best until one of the most talented members called Phiber Optik feuded with Legion of Doomer Erik Bloodaxe and got tossed out of the clubhouse Phiber s friends formed a rival group the Masters of Deception The Comprehensive Crime Control Act gives the Secret Service jurisdiction over computer fraud Cult of the Dead Cow forms in Lubbock Texas and begins publishing its ezine The hacker magazine 2600 begins regular publication right when TAP was putting out its final issue The editor of 2600 Emmanuel Goldstein whose real name is Eric Corley takes his handle from the leader of the resistance in George Orwell s 1984 The publication provides tips for would be hackers and phone phreaks as well as commentary on the hacker issues of the day Today copies of 2600 are sold at most large retail bookstores The Chaos Communication Congress the annual European hacker conference organized by the Chaos Computer Club is held in Hamburg Germany William Gibson s groundbreaking science fiction novel Neuromancer about Case a futuristic computer hacker is published Considered the first major cyberpunk novel it brought into hacker jargon such terms as cyberspace the matrix simstim and ICE 1985 Edit KILOBAUD is re organized into The P H I R M and begins sysopping hundreds of BBSs throughout the United States Canada and Europe The online zine Phrack is established The Hacker s Handbook is published in the UK 23 The FBI Secret Service Middlesex County NJ Prosecutor s Office and various local law enforcement agencies execute seven search warrants concurrently across New Jersey on July 12 1985 seizing equipment from BBS operators and users alike for complicity in computer theft 24 under a newly passed and yet untested criminal statute 25 This is famously known as the Private Sector Bust 26 or the 2600 BBS Seizure 27 and implicated the Private Sector BBS sysop Store Manager also a BBS sysop Beowulf Red Barchetta The Vampire the NJ Hack Shack BBS sysop and the Treasure Chest BBS sysop 1986 Edit After more and more break ins to government and corporate computers Congress passes the Computer Fraud and Abuse Act which makes it a crime to break into computer systems The law however does not cover juveniles citation needed Robert Schifreen and Stephen Gold are convicted of accessing the Telecom Gold account belonging to the Duke of Edinburgh under the Forgery and Counterfeiting Act 1981 in the United Kingdom the first conviction for illegally accessing a computer system On appeal the conviction is overturned as hacking is not within the legal definition of forgery 28 Arrest of a hacker who calls himself The Mentor He published a now famous treatise shortly after his arrest that came to be known as the Hacker Manifesto in the e zine Phrack This still serves as the most famous piece of hacker literature and is frequently used to illustrate the mindset of hackers Astronomer Clifford Stoll plays a pivotal role in tracking down hacker Markus Hess events later covered in Stoll s 1990 book The Cuckoo s Egg 29 1987 Edit The Christmas Tree EXEC worm causes major disruption to the VNET BITNET and EARN networks 30 1988 Edit The Morris Worm Graduate student Robert T Morris Jr of Cornell University launches a worm on the government s ARPAnet precursor to the Internet 31 32 The worm spreads to 6 000 networked computers clogging government and university systems Robert Morris is dismissed from Cornell sentenced to three years probation and fined 10 000 33 First National Bank of Chicago is the victim of 70 million computer theft The Computer Emergency Response Team CERT is created by DARPA to address network security The Father Christmas computer worm spreads over DECnet networks 1989 Edit Jude Milhon aka St Jude and R U Sirius launch MONDO 2000 a major 90s tech lifestyle magazine in Berkeley California The politically motivated WANK worm spreads over DECnet Dutch magazine Hack Tic begins The Cuckoo s Egg by Clifford Stoll is published The detection of AIDS Trojan horse is the first instance of a ransomware detection 1990s Edit1990 Edit Operation Sundevil introduced After a prolonged sting investigation Secret Service agents swoop down on organizers and prominent members of BBSs in 14 U S cities including the Legion of Doom conducting early morning raids and arrests The arrests involve and are aimed at cracking down on credit card theft and telephone and wire fraud The result is a breakdown in the hacking community with members informing on each other in exchange for immunity The offices of Steve Jackson Games are also raided and the role playing sourcebook GURPS Cyberpunk is confiscated possibly because the government fears it is a handbook for computer crime Legal battles arise that prompt the formation of the Electronic Frontier Foundation including the trial of Knight Lightning Australian federal police tracking Realm members Phoenix Electron and Nom are the first in the world to use a remote data intercept to gain evidence for a computer crime prosecution 34 The Computer Misuse Act 1990 is passed in the United Kingdom criminalising any unauthorised access to computer systems 1992 Edit Release of the movie Sneakers in which security experts are blackmailed into stealing a universal decoder for encryption systems One of the first ISPs MindVox opens to the public Bulgarian virus writer Dark Avenger wrote 1260 the first known use of polymorphic code used to circumvent the type of pattern recognition used by antivirus software and nowadays also intrusion detection systems citation needed 35 Publication of a hacking instruction manual for penetrating TRW credit reporting agency by Infinite Possibilities Society IPS gets Dr Ripco the sysop of Ripco BBS mentioned in the IPS manual arrested by the United States Secret Service 36 1993 Edit The first DEF CON hacking conference takes place in Las Vegas The conference is meant to be a one time party to say good bye to BBSs now replaced by the Web but the gathering was so popular it became an annual event AOL gives its users access to Usenet precipitating Eternal September 1994 Edit Summer Russian crackers siphon 10 million from Citibank and transfer the money to bank accounts around the world Vladimir Levin the 30 year old ringleader used his work laptop after hours to transfer the funds to accounts in Finland and Israel Levin stands trial in the United States and is sentenced to three years in prison Authorities recover all but 400 000 of the stolen money Hackers adapt to emergence of the World Wide Web quickly moving all their how to information and hacking programs from the old BBSs to new hacker web sites AOHell is released a freeware application that allows a burgeoning community of unskilled script kiddies to wreak havoc on America Online For days hundreds of thousands of AOL users find their mailboxes flooded with multi megabyte email bombs and their chat rooms disrupted with spam messages December 27 After experiencing an IP spoofing attack by Kevin Mitnick computer security expert Tsutomu Shimomura started to receive prank calls that popularized the phrase My kung fu is stronger than yours 37 1995 Edit The movies The Net and Hackers are released The Canadian ISP dlcwest com is hacked and website replaced with a graphic and the caption You ve been hacked MOFO The US Secret Service raid 12 and arrest 6 cellular phone hackers in Operation Cybersnare February 22 The FBI raids the Phone Masters 38 1996 Edit Hackers alter Web sites of the United States Department of Justice August the CIA October and the U S Air Force December Canadian hacker group Brotherhood breaks into the Canadian Broadcasting Corporation Arizona hacker John Sabo A K A FizzleB Peanut was arrested for hacking Canadian ISP dlcwest com claiming the company was defrauding customers through over billing The US general accounting office reports that hackers attempted to break into Defense Department computer files some 250 000 times in 1995 alone with a success rate of about 65 and doubling annually 39 40 41 42 Cryptovirology is born with the invention of the cryptoviral extortion protocol that would later form the basis of modern ransomware 43 1997 Edit A 16 year old Croatian youth penetrates computers at a U S Air Force base in Guam 44 June Eligible Receiver 97 tests the American government s readiness against cyberattacks December Information Security publishes first issue clarification needed First high profile attacks on Microsoft s Windows NT operating system 45 1998 Edit January Yahoo notifies Internet users that anyone visiting its site in the past month might have downloaded a logic bomb and worm planted by hackers claiming a logic bomb will go off if computer hacker Kevin Mitnick is not released from prison 46 February The Internet Software Consortium proposes the use of DNSSEC Domain Name System Security Extensions to secure DNS servers May 19 The seven members of the hacker think tank known as L0pht testify in front of the US congressional Government Affairs committee on Weak Computer Security in Government June Information Security publishes its first annual Industry Survey finding that nearly three quarters of organizations suffered a security incident in the previous year clarification needed September Electronic Disturbance Theater an online political performance art group attacks the websites of The Pentagon Mexican president Ernesto Zedillo and the Frankfurt Stock Exchange calling it conceptual art and claiming it to be a protest against the suppression of the Zapatista Army of National Liberation in southern Mexico EDT uses the FloodNet software to bombard its opponents with access requests 47 October U S Attorney General Janet Reno announces National Infrastructure Protection Center 1999 Edit Software security goes mainstream In the wake of Microsoft s Windows 98 release 1999 becomes a banner year for security and hacking Hundreds of advisories and patches are released in response to newfound and widely publicized bugs in Windows and other commercial software products A host of security software vendors release anti hacking products for use on home computers U S President Bill Clinton announces a 1 46 billion initiative to improve government computer security The plan would establish a network of intrusion detection monitors for certain federal agencies and encourage the private sector to do the same January 7 The Legion of the Underground LoU declares war against the governments of Iraq and the People s Republic of China An international coalition of hackers including Cult of the Dead Cow 2600 s staff Phrack s staff L0pht and the Chaos Computer Club issued a joint statement CRD 990107 Hackers on planet earth against infowar condemning the LoU s declaration of war The LoU responded by withdrawing its declaration March The Melissa worm is released and quickly becomes the most costly malware outbreak to date July Cult of the Dead Cow releases Back Orifice 2000 at DEF CON August Kevin Mitnick is sentenced to 5 years of which over 4 years had already been spent pre trial including 8 months solitary confinement September Level Seven Crew hacks the U S Embassy in China s website and places racist anti government slogans on embassy site in regards to 1998 U S embassy bombings 48 September 16 The United States Department of Justice sentences the Phone Masters 49 October American Express introduces the Blue smart card the industry s first chip based credit card in the US November 17 A hacker interviewed by Hilly Rose during the radio show Coast to Coast AM then hosted by Art Bell exposes a plot by al Qaeda to derail Amtrak trains This results in all trains being forcibly stopped over Y2K as a safety measure 2000s Edit2000 Edit May The ILOVEYOU worm also known as VBS Loveletter and Love Bug worm is a computer worm written in VBScript It infected millions of computers worldwide within a few hours of its release It is considered to be one of the most damaging worms ever It originated in the Philippines made by an AMA Computer College student Onel de Guzman for his thesis September Computer hacker Jonathan James became the first juvenile to serve jail time for hacking 2001 Edit Microsoft becomes the prominent victim of a new type of hack that attacks the domain name server In these denial of service attacks the DNS paths that take users to Microsoft s websites are corrupted February A Dutch cracker releases the Anna Kournikova virus initiating a wave of viruses that tempts users to open the infected attachment by promising a sexy picture of the Russian tennis star April FBI agents trick two Russian crackers into coming to the U S and revealing how they were hacking U S banks 50 July Russian programmer Dmitry Sklyarov is arrested at the annual DEF CON hacker convention He was the first person criminally charged with violating the Digital Millennium Copyright Act DMCA August Code Red worm infects tens of thousands of machines The National Cyber Security Alliance NCSA is established in response to the September 11 attacks on the World Trade Center 51 2002 Edit January Bill Gates decrees that Microsoft will secure its products and services and kicks off a massive internal training and quality control campaign March Gary McKinnon is arrested following unauthorized access to US military and NASA computers May Klez H a variant of the worm discovered in November 2001 becomes the biggest malware outbreak in terms of machines infected but causes little monetary damage June The Bush administration files a bill to create the Department of Homeland Security which among other things will be responsible for protecting the nation s critical IT infrastructure August Researcher Chris Paget publishes a paper describing shatter attacks detailing how Windows unauthenticated messaging system can be used to take over a machine The paper raises questions about how securable Windows could ever be It is however largely derided as irrelevant as the vulnerabilities it described are caused by vulnerable applications placing windows on the desktop with inappropriate privileges rather than an inherent flaw within the Operating System October The International Information Systems Security Certification Consortium ISC confers its 10 000th CISSP certification 2003 Edit The hacktivist group Anonymous was formed March Cult of the Dead Cow and Hacktivismo are given permission by the United States Department of Commerce to export software utilizing strong encryption 2004 Edit March New Zealand s Government National Party website defaced by hacktivist group BlackMask 52 July North Korea claims to have trained 500 hackers who successfully crack South Korean Japanese and their allies computer systems 53 October National Cyber Security Awareness Month was launched by the National Cyber Security Alliance and U S Department of Homeland Security 2005 Edit April 2 Rafael Nunez aka RaFa a notorious member of the hacking group World of Hell is arrested following his arrival at Miami International Airport for breaking into the Defense Information Systems Agency computer system in June 2001 54 September 13 Cameron Lacroix is sentenced to 11 months for gaining access to T Mobile s network and exploiting Paris Hilton s Sidekick 55 November 3 Jeanson James Ancheta whom prosecutors say was a member of the Botmaster Underground a group of script kiddies mostly noted for their excessive use of bot attacks and propagating vast amounts of spam was taken into custody after being lured to FBI offices in Los Angeles 56 2006 Edit January One of the few worms to take after the old form of malware destruction of data rather than the accumulation of zombie networks to launch attacks from is discovered It had various names including Kama Sutra used by most media reports Black Worm Mywife Blackmal Nyxem version D Kapser KillAV Grew and CME 24 The worm would spread through e mail client address books and would search for documents and fill them with garbage instead of deleting them to confuse the user It would also hit a web page counter when it took control allowing the programmer who created it as well as the world to track the progress of the worm It would replace documents with random garbage on the third of every month It was hyped by the media but actually affected relatively few computers and was not a real threat for most users May Jeanson James Ancheta receives a 57 month prison sentence 57 and is ordered to pay damages amounting to 15 000 to the Naval Air Warfare Center in China Lake and the Defense Information Systems Agency for damage done due to DDoS attacks and hacking Ancheta also had to forfeit his gains to the government which include 60 000 in cash a BMW and computer equipment 57 May The largest defacement in Web History as of that time is performed by the Turkish hacker iSKORPiTX who successfully hacked 21 549 websites in one shot 58 July Robert Moore and Edwin Pena were the first people to be charged by U S authorities for VoIP hacking Robert Moore served 2 years in federal prison and was given 152 000 restitution Once Edwin Pena was caught after fleeing the country evading authorities for almost 2 years he was sentenced to 10 years and given 1 million restitution 59 September Viodentia releases FairUse4WM tool which would remove DRM information off Windows Media Audio WMA files downloaded from music services such as Yahoo Unlimited Napster Rhapsody Music and Urge 2007 Edit May 17 Estonia recovers from massive denial of service attack 60 June 13 FBI Operation Bot Roast finds over 1 million botnet victims 61 June 21 A spear phishing incident at the Office of the Secretary of Defense steals sensitive U S defense information leading to significant changes in identity and message source verification at OSD 62 63 August 11 United Nations website hacked by Indian Hacker Pankaj Kumar Singh 64 November 14 Panda Burning Incense which is known by several other names including Fujacks and Radoppan T lead to the arrest of eight people in China Panda Burning Incense was a parasitic virus that infected executable files on a PC When infected the icon of the executable file changes to an image of a panda holding three sticks of incense The arrests were the first for virus writing in China 65 2008 Edit January 17 Project Chanology Anonymous attacks Scientology website servers around the world Private documents are stolen from Scientology computers and distributed over the Internet March 7 Around 20 Chinese hackers claim to have gained access to the world s most sensitive sites including the Pentagon They operated from an apartment on a Chinese Island 66 March 14 Trend Micro website successfully hacked by Turkish hacker Janizary aka Utku 67 2009 Edit April 4 Conficker worm infiltrated millions of PCs worldwide including many government level top security computer networks 68 2010s Edit2010 Edit January 12 Operation Aurora Google publicly reveals 69 that it has been on the receiving end of a highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google June Stuxnet The Stuxnet worm is found by VirusBlokAda Stuxnet was unusual in that while it spread via Windows computers its payload targeted just one specific model and type of SCADA systems It slowly became clear that it was a cyber attack on Iran s nuclear facilities with most experts believing that Israel 70 was behind it perhaps with US help December 3 The first Malware Conference MALCON took place in India Founded by Rajshekhar Murthy malware coders are invited to showcase their skills at this annual event supported by the Government of India An advanced malware for Symbian OS is released by hacker A0drul3z 2011 Edit The hacker group Lulz Security is formed April 9 Bank of America website got hacked by a Turkish hacker named JeOPaRDY An estimated 85 000 credit card numbers and accounts were reported to have been stolen due to the hack Bank officials say no personal customer bank information is available on that web page Investigations are being conducted by the FBI to trace down the incriminated hacker 71 April 17 An external intrusion sends the PlayStation Network offline and compromises personally identifying information possibly including credit card details of its 77 million accounts in what is claimed to be one of the five largest data breaches ever 72 Computer hacker sl1nk releases information of his penetration in the servers of the Department of Defense DoD Pentagon NASA NSA US Military Department of the Navy Space and Naval Warfare System Command and other UK US government websites 73 September Bangladeshi hacker TiGER M TE made a world record in defacement history by hacking 700 000 websites in a single shot 74 October 16 The YouTube channel of Sesame Street was hacked streaming pornographic content for about 22 minutes 75 November 1 The main phone and Internet networks of the Palestinian territories sustained a hacker attack from multiple locations worldwide 76 November 7 The forums for Valve s Steam service were hacked Redirects for a hacking website Fkn0wned appeared on the Steam users forums offering hacking tutorials and tools porn free giveaways and much more 77 December 14 Five members of the Norwegian hacker group Noria were arrested allegedly suspected for hacking into the email account of the militant extremist Anders Behring Breivik who perpetrated the 2011 attacks in the country 78 2012 Edit A hacker published over 400 000 credit cards online 79 and threatened Israel to release 1 million credit cards in the future In response to that incident an Israeli hacker published over 200 Albanian credit cards online 80 81 Gottfrid Svartholm Warg the co founder of Pirate Bay was convicted in Denmark of hacking a mainframe computer what was then Denmark s biggest hacking case 82 January 7 Team Appunity a group of Norwegian hackers were arrested for breaking into Norway s largest prostitution website then publishing the user database online 83 February 3 Marriott was hacked by a New Age ideologist Attila Nemeth who was resisting against the New World Order where he said that corporations are allegedly controlling the world As a response Marriott reported him to the United States Secret Service 84 February 8 Foxconn is hacked by a hacker group Swagg Security releasing a massive amount of data including email and server logins and even more alarming bank account credentials of large companies like Apple and Microsoft Swagg Security stages the attack just as a Foxconn protest ignites against terrible working conditions in southern China 85 May 4 The websites of several Turkish representative offices of international IT companies are defaced within the same day by F0RTYS3V3N Turkish Hacker including the websites of Google Yandex Microsoft Gmail MSN Hotmail PayPal 86 87 88 89 May 24 WHMCS is hacked by UGNazi they claim that the reason for this is because of the illegal sites that are using their software May 31 MyBB is hacked by newly founded hacker group UGNazi the website was defaced for about a day they claim their reasoning for this was because they were upset that the forum board Hackforums net uses their software June 5 The social networking website LinkedIn has been hacked and the passwords for nearly 6 5 million user accounts are stolen by cybercriminals As a result a United States grand jury indicted Nikulin and three unnamed co conspirators on charges of aggravated identity theft and computer intrusion August 15 The most valuable company in the world Saudi Aramco is crippled by a cyber warfare attack for months by malware called Shamoon Considered the biggest hack in history in terms of cost and destructiveness Carried out by an Iranian attacker group called Cutting Sword of Justice 90 Iranian hackers retaliated against Stuxnet by releasing Shamoon The malware destroyed over 35 000 Saudi Aramco computers affecting business operations for months December 17 Computer hacker sl1nk announced that he has hacked a total of 9 countries SCADA systems The proof includes 6 countries France Norway Russia Spain Sweden and the United States 91 2013 Edit The social networking website Tumblr is attacked by hackers Consequently 65 469 298 unique emails and passwords were leaked from Tumblr The data breach s legitimacy is confirmed by computer security researcher Troy Hunt 92 August Yahoo data breaches occurred More than 1 billion users data are being leaked 2014 Edit February 7 The bitcoin exchange Mt Gox filed for bankruptcy after 460 million was apparently stolen by hackers due to weaknesses in their system and another 27 4 million went missing from its bank accounts 93 October The White House computer system was hacked 94 It was said that the FBI the Secret Service and other U S intelligence agencies categorized the attacks among the most sophisticated attacks ever launched against U S government systems 95 November 24 In response to the release of the film The Interview the servers of Sony Pictures are hacked by a hacker group calling itself Guardian of Peace November 28 The website of the Philippine telecommunications company Globe Telecom was hacked in response to the poor internet service they are distributing 96 2015 Edit June the records of 21 5 million people including social security numbers dates of birth addresses fingerprints and security clearance related information are stolen from the United States Office of Personnel Management OPM 97 Most of the victims are employees of the United States government and unsuccessful applicants to it The Wall Street Journal and The Washington Post report that government sources believe the hacker is the government of China 98 99 July The servers of extramarital affairs website Ashley Madison were breached 2016 Edit February The 2016 Bangladesh Bank heist attempted to steal US 951 million from a Bangladesh Bank and succeeded in getting 101 million although some of this was later recovered July 22 WikiLeaks published the documents from the 2016 Democratic National Committee email leak July 29 a group suspected coming from China launched hacker attacks on the website of Vietnam Airlines August 13 The Shadow Brokers TSB started publishing several leaks containing hacking tools from the National Security Agency NSA including several zero day exploits Ongoing leaks until April 2017 The Shadow Brokers September Hacker Ardit Ferizi is sentenced to 20 years in prison after being arrested for hacking U S servers and passing the leaked information to members of ISIL terrorist group back in 2015 100 October The 2016 Dyn cyberattack is being conducted with a botnet consisting of IOTs infected with Mirai by the hacktivist groups SpainSquad Anonymous and New World Hackers reportedly in retaliation for Ecuador s rescinding Internet access to WikiLeaks founder Julian Assange at their embassy in London where he has been granted asylum 101 Late 2016 Hackers steal international personal user data from the company Uber including phone numbers email addresses and names of 57 million people and 600 000 driver s license numbers of drivers for the company Uber s GitHub account was accessed through Amazon s cloud based service Uber paid the hackers 100 000 for assurances the data was destroyed 102 December 2016 Yahoo data breaches reported and affected more than 1 billion users The data leakage includes user names email addresses telephone numbers encrypted or unencrypted security questions and answers dates of birth and hashed passwords2017 Edit April A hacker group calling itself The Dark Overlord posted unreleased episodes of Orange Is the New Black TV series online after failing to extort the online entertainment company Netflix 103 May WannaCry ransomware attack started on Friday May 12 2017 104 and has been described as unprecedented in scale infecting more than 230 000 computers in over 150 countries 105 A hacked unreleased Disney film is held for ransom to be paid in Bitcoin citation needed May 25 000 digital photos and ID scans relating to patients of the Grozio Chirurgija cosmetic surgery clinic in Lithuania were obtained and published without consent by an unknown group demanding ransoms 106 107 108 Thousands of clients from more than 60 countries were affected 106 The breach brought attention to weaknesses in Lithuania s information security 106 June 2017 Petya cyberattack 109 June TRITON TRISIS a malware framework designed to reprogram Triconex safety instrumented systems SIS of industrial control systems ICS discovered in Saudi Arabian Petrochemical plant 110 August Hackers demand 7 5 million in Bitcoin to stop pre releasing HBO shows and scripts including Ballers Room 104 and Game of Thrones 111 May July 2017 The Equifax breach 112 September 2017 Deloitte breach 113 December Mecklenburg County North Carolina computer systems were hacked They did not pay the ransom 114 2018 Edit March Computer systems in the city of Atlanta in the U S state of Georgia are seized by hackers with ransomware They did not pay the ransom 115 and two Iranians were indicted by the FBI on cyber crime charges for the breach 116 The town of Wasaga Beach in Ontario Canada computer systems are seized by hackers with ransomware 117 September Facebook was hacked exposing to hackers the personal information of an estimated 30 million Facebook users initially estimated at 50 million when the hackers stole the access tokens of 400 000 Facebook users The information accessible to the hackers included users email addresses phone numbers their lists of friends Groups they are members of users search information posts on their timelines and names of recent Messenger conversations 118 119 October West Haven Connecticut USA computer systems are seized by hackers with ransomware they paid 2 000 in ransom 120 November The first U S indictment of individual people for ransomware attacks occurs The U S Justice Department indicted two men Faramarz Shahi Savandi and Mohammad Mehdi Shah Mansouri who allegedly used the SamSam ransomware for extortion netting them more than 6 million in ransom payments The companies infected with the ransomware included Allscripts Medstar Health and Hollywood Presbyterian Medical Center Altogether the attacks caused victims to lose more than 30 million in addition to the ransom payments 121 Marriott disclosed that its Starwood Hotel brand had been subject to a security breach 2019 Edit March Jackson County computer systems in the U S state of Georgia are seized by hackers with ransomware they paid 400 000 in ransom 122 The city of Albany in the U S state of New York experiences a ransomware cyber attack 123 124 April Computer systems in the city of Augusta in the U S state of Maine are seized by hackers using ransomware 125 126 The City of Greenville North Carolina s computer systems are seized by hackers using ransomware known as RobbinHood 127 128 Imperial County in the U S state of California computer systems are seized by hackers using Ryuk ransomware 129 May computer systems belonging to the City of Baltimore are seized by hackers using ransomware known as RobbinHood that encrypts files with a file locking virus as well as the tool EternalBlue 130 131 132 133 June The city of Riviera Beach Florida paid roughly 600 000 ransom in Bitcoin to hackers who seized their computers using ransomware 134 Hackers stole 18 hours of unreleased music from the band Radiohead demanding 150 000 ransom Radiohead released the music to the public anyway and did not pay the ransom 135 November The Anonymous hacktivist collective announced that they have hacked into four Chinese computer databases and donated those to data breach indexing notification service vigilante pw The hack was conducted in order to support the 2019 Hong Kong protests amidst the Hong Kong police s siege of the city s Polytechnic University They also brought up a possible peace plan first proposed by a professor at Inha University in hopes of having the Korean reunification and the five key demands of the Hong Kong protest being fulfilled at once 136 2020s Edit2020 Edit February Anonymous hacked the United Nations website and created a page for Taiwan a country which had not had a seat at the UN since 1971 The hacked page featured the Flag of Taiwan the KMT emblem a Taiwan Independence flag the Anonymous logo embedded YouTube videos such as the Taiwanese national anthem and the closing score for the 2019 film Avengers Endgame titled It s Been a Long Long Time and a caption The hacked server belonged to the United Nations Department of Economic and Social Affairs 137 May Anonymous declared a large hack on May 28 three days after the murder of George Floyd An individual claiming to represent Anonymous stated that We are Legion We do not forgive We do not forget Expect us in a now deleted video Anonymous addressed police brutality and said they will be exposing their many crimes to the world It was suspected that Anonymous were the cause for the downtime and public suspension of the Minneapolis Police Department website and its parent site the website of the City of Minneapolis 138 May Indian national Shubham Upadhyay posed as Superintendent of Police and using social engineering used a free caller identification app to call up the in charge of the Kotwali police station K K Gupta in order to threaten him to get his phone repaired amidst the COVID 19 lockdown The attempt was foiled 139 June Anonymous claimed responsibility for stealing and leaking a trove of documents collectively nicknamed BlueLeaks The 269 gigabyte collection was published by a leak focused activist group known as Distributed Denial of Secrets Furthermore the collective took down Atlanta Police Department s website via DDoS and defaced websites such as a Filipino governmental webpage and that of Brookhaven National Labs They expressed support for Julian Assange and press freedom while briefly taking a swing against Facebook Reddit and Wikipedia for having engaged in shady practices behind our prying eyes In the case of Reddit they posted a link to a court document describing the possible involvement of a moderator of a large traffic subreddit r news in an online harassment related case 140 141 June The Buffalo NY police department s website was supposedly hacked by Anonymous 142 While the website was up and running after a few minutes Anonymous tweeted again on Twitter urging that it be taken down 143 A few minutes later the Buffalo NY website was brought down again They also hacked Chicago police radios to play N W A s Fuck tha Police 144 June Over 1 000 accounts on multiplayer online game Roblox were hacked to display that they supported U S President Donald Trump 145 July The 2020 Twitter bitcoin scam occurred July User credentials of writing website Wattpad were stolen and leaked on a hacker forum The database contained over 200 million records 146 August A large number of subreddits were hacked to post materials endorsing Donald Trump The affected subreddits included r BlackPeopleTwitter r 3amJokes r NFL r PhotoshopBattles An entity with the name of calvin goh and Melvern had purportedly claimed responsibility for the massive defacement and also made violent threats against a Chinese embassy 147 August The US Air Force s Hack A Sat event was hosted at DEF CON s virtual conference where groups such as Poland Can Into Space FluxRepeatRocket AddVulcan Samurai Solar Wine PFS 15 Fitty Tree and 1064CBread competed in order to control a satellite in space The Poland Can Into Space team stood out for having successfully manipulated a satellite to take a picture of the Moon 148 149 August The website of Belarusian company BrestTorgTeknika was defaced by a hacker nicknaming herself Queen Elsa in order to support the 2020 21 Belarusian protests In it the page hacker exclaimed Get Iced Iced already and Free Belarus revolution of our times with the latter alluding to the famous slogan used by 2019 Hong Kong protests The results of the hack were then announced on Reddit s r Belarus subreddit by a poster under the username Socookre 150 151 August Multiple DDoS attacks forced New Zealand s stock market to temporarily shut down 152 September The first suspected death from a cyberattack was reported after cybercriminals hit a hospital in Dusseldorf Germany with ransomware 153 October A wave of botnet coordinated ransomware attacks against hospital infrastructure occurred in the United States identified as associated with Russia ru 154 State security officials and American corporate security officers were concerned that these attacks might be a prelude to hacking of election infrastructure during the elections of the subsequent month like similar incidents during the 2016 United States elections and other attacks 155 there was however no evidence that they performed attacks on election infrastructure in 2020 156 December A supply chain attack targeting upstream dependencies from Texas IT service provider SolarWinds results in serious wide ranging security breaches at the U S Treasury and Commerce departments White House officials did not immediately publicly identify a culprit Reuters citing sources familiar with the investigation pointed toward the Russian government 157 An official statement shared by Senate Finance Committee ranking member Ron Wyden said Hackers broke into systems in the Departmental Offices division of Treasury home to the department s highest ranking officials 158 December A bomb threat posted from a Twitter account that was seemingly hacked by persons with the aliases of Omnipotent and choonkeat against the Aeroflot Flight 102 a passenger flight with the plane tail number of VQ BIL coming from Moscow to New York City Due to that a runway of New York s John F Kennedy International Airport was temporarily closed and resulted in the delay of Aeroflot Flight 103 a return flight back to Moscow 159 160 161 December The Anonymous group initiated Christmas gift defacements against multiple Russian portals including a municipal website in Tomsk and that of a regional football club Inside the defacements they made multiple references such as Russian opposition activist Alexei Navalny freedom protests in Thailand and Belarus and opposition to the Chinese Communist Party They also held a mock award based on an event on the game platform Roblox that was called RB Battles where YouTubers Tanqr and KreekCraft the winner and the runner up of the actual game event were compared to both Taiwan and New Zealand respectively due to the latter s reportedly stellar performance in fighting the COVID 19 pandemic 162 2021 Edit January Microsoft Exchange Server data breach February Anonymous announced cyber attacks of at least five Malaysian websites As a result eleven individuals were nabbed as suspects 163 164 165 166 February Hackers including those with names of 张卫能 utoyo and full discl0sure hijacked an events website Aucklife in order to craft a phony bomb threat against the Chinese consulate in Auckland New Zealand and also a similar facility in Sydney Australia Their motive was a punitive response against China due to COVID 19 As a result a physical search was conducted at the consulate by New Zealand s Police Specialist Search Group while Aucklife owner Hailey Newton had since regained her access to the website Wellington based cybersecurity consultant Adam Boileau remarked that the hack isn t highly technical 167 168 February The group Myanmar Hackers attacked several websites belonging to Myanmar government agencies such as the Central Bank of Myanmar and the military run Tatmadaw True News Information Team The group also targeted the Directorate of Investment and Company Administration Trade Department Customs Department Ministry of Commerce Myawady TV and state owned broadcaster Myanmar Radio and Television and some private media outlets A computer technician in Yangon found that the hacks were denial of service attacks while the group s motive is to protest the 2021 Myanmar coup 169 April Over 500 million Facebook users personal info including info on 32 million in the United States was discovered posted on a hackers website though Facebook claimed that the information was from a 2019 hack and that the company had already taken mitigation measures however the company declined to say whether it had notified the affected users of the breach 170 171 172 better source needed April The Ivanti Pulse Connect Secure data breach of unauthorized access to the networks of high value targets since at least June 2020 via CVE 2021 22893 across the U S and some E U nations additional citation s needed due to their use of vulnerable proprietary software was reported 173 174 May Operation of the U S Colonial Pipeline is interrupted by a ransomware cyber operation 175 May On 21 May 2021 Air India was subjected to a cyberattack wherein the personal details of about 4 5 million customers around the world were compromised including passport credit card details birth dates name and ticket information 176 177 July On 22 July 2021 Saudi Aramco data were leaked by a third party contractor and demanded 50 million ransom from Saudi Aramco Saudi Aramco confirmed the incident after a hacker claimed on dark web that he had stolen 1 terabyte of data about location of oil refineries and employees data in a post that was posted on June 23 178 179 180 August T Mobile reported that data files with information from about 40 million former or prospective T Mobile customers including first and last names date of birth SSN and driver s license ID information were compromised 181 September and October 2021 Epik data breach Anonymous obtained and released over 400 gigabytes of data from the domain registrar and web hosting company Epik The data was shared in three releases between September 13 and October 4 The first release included domain purchase and transfer details account credentials and logins payment history employee emails and unidentified private keys 182 The hackers claimed they had obtained a decade s worth of data including all customer data and records for all domains ever hosted or registered through the company and which included poorly encrypted passwords and other sensitive data stored in plaintext 182 183 The second release consisted of bootable disk images and API keys for third party services used by Epik 184 the third contained additional disk images and an archive of data belonging to the Republican Party of Texas who are an Epik customer 185 October On October 6 2021 an anonymous 4chan reportedly hacked and leaked the source code of Twitch as well as information on how much the streaming service paid almost 2 4 million streamers since August 2019 186 Source code from almost 6 000 GitHub repositories was leaked and the 4chan user said it was part one of a much larger release 187 November and December On November 24th Chen Zhaojun of Alibaba s Cloud Security Team reported a zero day vulnerability later dubbed Log4Shell involving the use of arbitrary code execution in the ubiquitous Java logging framework software Log4j 188 189 190 The report was privately disclosed to project developers of Log4j a team at The Apache Software Foundation on November 24 On December 8 Zhaojun contacted the developers again detailing how the vulnerability was being discussed in public security chat rooms was already known by some security researchers and pleaded that the team expedite the solution to the vulnerability in the official release version of Log4j 190 Early exploitations were noticed on Minecraft servers on December 9 however forensic analysis indicates that Log4Shell may have been exploited as early as December 1 or 2nd 190 191 192 193 Due to the ubiquity of devices with the Log4j software hundreds of millions and the simplicity in executing the vulnerability it is considered to be arguably one of the largest and most critical vulnerabilities ever 194 195 Yet big names in security hacking helped in regaining control over server like Graham Ivan Clark and Elhamy A Elsebaey A portion of the vulnerability was fixed in a patch distributed on December 6 three days before the vulnerability was publicly disclosed on December 9 190 192 196 197 2022 Edit February The German Chaos Computer Club has reported more than fifty data leaks Government institutions and companies from various business sectors were affected In total the researchers had access to over 6 4 million personal data records as well as terabytes of log data and source code 198 199 March The website of a local newspaper in Sumy Ukraine was hacked by a person identifying themselves as zehang陈 They claimed that they and other individuals P srim asap Mrthanthomthebomber mister handsomekai and RiansJohnson had placed bombs at Chinese and Russian diplomatic facilities in Malaysia with the former containing a photo of Huanan Seafood Wholesale Market Hong Kong s International Finance Centre and MTR Airport Station and the headquarters office of American game company ROBLOX Besides that they claimed responsibility for the delivery of an envelope containing white powders against the Russian embassy in Canberra Australia As a result the area surrounding the embassy was briefly cordoned off 200 201 March As a response to the 2022 Russian invasion of Ukraine Anonymous performed many attacks against computer systems in Russia Most notably Anonymous committed a cyberattack against Roskomnadzor 202 April Anonymous hacked Russian companies Aerogas Forest and Petrovsky Fort From there they leaked around 437 500 emails which they donated to non profit whistleblower organization Distributed Denial of Secrets Furthermore they leaked 446 GB of data from Russian Ministry of Culture 203 204 April On April 19 Gijon City Council Spain was attacked by the GERVASIA computer virus and suffered data hijacking 205 May Network Battalion 65 NB65 a hacktivist group affiliated with Anonymous has reportedly hacked Russian payment processor Qiwi A total of 10 5 terabytes of data including transaction records and customers credit cards had been exfiltrated They further infected Qiwi with ransomwares and threatened to release more customer records 206 May During the Victory Day in Russia anti war messages were inserted into Russian TV schedules including that of Russia 1 Channel 1 and NTV Plus One of the messages were On your hands is the blood of thousands of Ukrainians and their hundreds of murdered children TV and the authorities are lying No to war 207 June A hacker on the Breach Forums claimed to have leaked more than 1 billion people s personal records from the Shanghai National Police Database 208 August During the visit of Speaker of the United States House of Representatives Nancy Pelosi to Taiwan the website of Taiwan s Office of the President website was affected by a distributed denial of service attack Anonymous then hacked into a China Heilongjiang province s Society Scientific Community Federation website and a Chinese gasoline generator factory s website 209 210 See also EditList of cyberattacks List of data breachesReferences Edit Marks Paul December 27 2011 Dot dash diss The gentleman hacker s 1903 lulz New Scientist Retrieved January 11 2012 Types of Cyber Attacks Hacking Attacks amp Techniques Rapid7 Retrieved 2021 03 21 Davis Amanda A History of Hacking IEEE The Institute Theinstitute ieee org Archived from the original on August 25 2016 Retrieved July 1 2017 When did the term computer virus arise Scientific American Retrieved July 27 2018 Yagoda Ben March 6 2014 A Short History of Hack Retrieved July 22 2017 Hacking and Blue Boxes The Story of Information Infostory com November 20 2011 Retrieved July 1 2017 Duarte Gustavo August 27 2008 First Recorded Usage of Hacker Gustavo Duarte Duartes org Retrieved July 1 2017 Archived copy PDF Archived from the original PDF on March 14 2016 Retrieved January 4 2017 a href Template Cite web html title Template Cite web cite web a CS1 maint archived copy as title link untitled1 html Larch www lcs mit edu 8001 November 7 1940 Retrieved July 1 2017 23257 IBM 7094 CTSS System Text Editor Multiple Instance Password File Disclosure Archived from the original on April 15 2013 Retrieved October 8 2010 23257 IBM 7094 CTSS System Text Editor Multiple Instance Password File Disclosure Archive fo Archived from the original on April 15 2013 Retrieved July 1 2017 The World s First Computer Password It Was Useless Too WIRED June 19 2011 Retrieved July 1 2017 Falkoff A D December 1 1991 The Family of APL Systems IBM Systems Journal 30 4 416 432 doi 10 1147 sj 304 0416 S2CID 19030940 Rosenbaum Ron October 7 2011 The article that inspired Steve Jobs Secrets of the Little Blue Box Slate Retrieved July 1 2017 The Memory Hole gt The Missing Chapter from The Art of Deception by Kevin Mitnick Archived from the original on March 17 2009 Retrieved July 1 2017 a href Template Cite web html title Template Cite web cite web a CS1 maint bot original URL status unknown link a b McLellan Vin July 26 1981 Case of the Purloined Password The New York Times Retrieved August 11 2015 The Greatest Hacks of All Time WIRED February 6 2001 Elmer DeWitt Philip August 29 1983 The 414 Gang Strikes Again Time p 75 Archived from the original on December 2 2007 Beware Hackers at play Newsweek September 5 1983 pp 42 46 48 Van Creveld M 2013 Wargames from gladiators to gigabytes Cambridge University Press Timeline The U S Government and Cybersecurity Washington Post 2002 Retrieved April 14 2006 Thompson Ken October 1983 Reflections on Trusting Trust PDF 1983 Turing Award Lecture ACM Cornwall Hugo 1986 The hacker s handbook Rev ed Alexandria Minn E A Brown Co ISBN 0 912579 06 4 OCLC 21561291 2600 The Hacker Quarterly Volume 2 Number 8 August 1985 United States Postal Service Telephone Tapping Scribd com Retrieved July 1 2017 New Jersey Statute Directory NJSA 2C 20 25 Computer criminal activity degree of crime sentencing Nj statute info com Retrieved July 1 2017 TUCoPS Cyber Law psbust txt Artofhacking com Retrieved July 1 2017 2600 Article Archived from the original on April 26 2012 Retrieved October 26 2011 Hacking into Prestel is not a Forgery Act offence Law Report The Times July 21 1987 Stoll Cliff 1989 The cuckoo s egg New York Doubleday ISBN 0 370 31433 6 Burger R Computer viruses a high tech disease Abacus Data Becker GmbH 1988 ISBN 1 55755 043 3 Spafford E H The Internet Worm Program An Analysis Purdue Technical Report CSD TR 823 undated Eichin M W and Rochlis J A With Microscope and Tweezers An Analysis of the Internet Virus of November 1988 MIT 1989 Computer Intruder is Put on Probation and Fined by John Markoff The New York Times The total fine ran to 13 326 which included a 10 000 fine 50 special assessment and 3 276 cost of probation oversight Bill Apro amp Graeme Hammond 2005 Hackers The Hunt for Australia s Most Infamous Computer Cracker Five Mile Press ISBN 1 74124 722 5 Easttom C 2018 An Examination of the Operational Requirements of Weaponised Malware Journal of Information Warfare 17 1 15 ProQuest 2137386551 via ProQuest Esquibel Bruce October 8 1994 Operation Sundevil is finally over for Dr Ripco Electronic Frontier Foundation Archived from the original on August 10 2011 Retrieved March 8 2009 Poulsen Kevin January 21 2000 The case of the kung fu phreak ZDNet Retrieved May 12 2015 Recent Large Name Phreaker Busts by Anonymous EmpireTimes March 11 1995 Office United States General Accounting 1996 Information Security Computer Attacks at Department of Defense Pose Increasing Risks Report to Congressional Requesters The Office p 2 United States Congress Senate Committee on Governmental Affairs Permanent Subcommittee on Investigations 1996 Security in Cyberspace Hearings Before the Permanent Subcommittee on Investigations of the Committee on Governmental Affairs United States Senate One Hundred Fourth Congress Second Session May 22 June 5 25 and July 16 1996 U S Government Printing Office p 424 ISBN 978 0 16 053913 8 Holt Thomas J Bossler Adam M Seigfried Spellar Kathryn C 2017 Cybercrime and Digital Forensics An Introduction Routledge ISBN 978 1 315 29695 1 Wang Shuangbao Paul Ledley Robert S 2013 Computer Architecture and Security Fundamentals of Designing Secure Computer Systems John Wiley amp Sons p 29 ISBN 978 1 118 16881 3 A Young M Yung Cryptovirology Extortion Based Security Threats and Countermeasures IEEE Symposium on Security amp Privacy May 6 8 1996 pp 129 141 IEEEExplore Cryptovirology extortion based security threats and countermeasures Trust in Cyberspace Committee on Information Systems Trustworthiness National Research Council 1999 Hackers jam Microsoft s site 1997 Associated Press December 10 1997 Hackers Leave Ransom Note on Yahoo Site Retrieved May 19 2017 Pentagon Deflects Web Assault WIRED Wired September 10 1998 Retrieved July 1 2017 CNN Embassy site hackers aimed to show its vulnerability September 8 1999 CNN February 6 2003 Archived from the original on 2003 02 06 U S Department of Justice For Immediate Release Dallas Texas USDOJ September 16 1999 Archived from the original on May 31 2009 FBI sting snares top Russian crackers The Register Get Online Safety Resources from the National Cyber Security Alliance Police called after National Party website hacked NZ Herald March 15 2004 North Korean hackers sabotage computer networks of South Korea Pravda Online Archived from the original on August 6 2007 Retrieved October 14 2008 Rob Lemos Campaign seeks to defang Rafa s hacker image Security Focus April 11 2005 Krebs Brian Teen Pleads Guilty to Hacking Paris Hilton s Phone The Washington Post September 13 2005 Iain Thomson November 4 2005 FBI sting nets botnet hacker vnunet com Archived from the original on December 20 2007 Retrieved September 26 2008 a b Botnet Herder Corralled to Serve 57 Months Security Technology News by TechWeb Archived from the original on September 27 2007 Retrieved May 3 2007 World Record 404907 websites hacked by Iskorpitx Turkish Hacker The Hacker News Retrieved 2022 05 01 McMillan Robert September 24 2010 Man gets 10 years for VoIP hacking Computerworld Retrieved May 27 2019 Kirk Jeremy May 17 2007 Estonia recovers from massive denial of service attack Network World Archived from the original on December 3 2013 Retrieved March 14 2015 Cooney Michael June 13 2007 FBI Operation Bot Roast finds over 1 million botnet victims Network World Retrieved March 14 2015 McMillan Robert June 21 2007 Pentagon shuts down systems after cyberattack InfoWorld IDG Archived from the original on July 6 2008 Retrieved March 10 2008 Aitoro Jill R March 5 2008 Defense officials still concerned about data lost in 2007 network attack Government Executive National Journal Group Retrieved March 10 2008 BMnin sitesi hacklendi haberi Internethaber Archived from the original on September 30 2011 Retrieved March 14 2015 Gradijan Dave February 13 2007 Eight Arrested for Creating Panda Burning Incense Virus CSO Online Retrieved July 20 2019 Chinese hackers No site is safe CNN March 7 2008 Retrieved March 7 2008 Hoffman Stefanie March 14 2008 Trend Micro Victim Of Malicious Hack CRN Retrieved March 14 2015 Markoff John August 26 2009 Defying Experts Rogue Computer Code Still Lurks New York Times Retrieved August 27 2009 A new approach to China Google Inc January 12 2010 Retrieved January 17 2010 Broad William J Sanger David E November 18 2010 Worm in Iran Can Wreck Nuclear Centrifuges The New York Times Kumar Mohit March 26 2011 Thousands of Bank of America Accounts Hacked The Hacker News Biggest Information Security Channel Retrieved March 14 2015 PlayStation data breach deemed in top 5 ever Business CBC News Cbc ca April 27 2011 Retrieved April 29 2011 Is Department of Defense DoD Pentagon NASA NSA secure TheHackerNews May 14 2011 Kovacs Eduard September 26 2011 700 000 InMotion Websites Hacked by TiGER M TE softpedia Retrieved March 14 2015 John P Mello Jr Sesame Street Hacked Porn Posted PC World Retrieved October 26 2011 Ashkar Alaa PA Telecommunications minister Palestinian Internet Under Hacking Attacks IMEMC Retrieved November 2 2011 Ashcraft Brian 7 November 2011 Steam Forums Apparently Hacked Kotaku Jonas Sverrisson Rasch News article about the arrests of Noria Dagbladet Retrieved December 14 2012 Flock Elizabeth January 3 2012 Saudi hackers say they published Israeli credit card information The Washington Post Kosovo Hacker Threatens to Release 1 Million Israeli Credit Card Numbers Curt Hopkins January 6 2012 Israeli hacker retaliates to credit card hacking BBC News January 12 2012 Reuters Staff 2014 10 31 Pirate Bay co founder sentenced to 42 months in jail in Denmark Reuters Retrieved 2021 08 05 Kripos Norwegian Tre personer siktet for datainnbrudd Kripos Archived from the original on July 28 2013 Retrieved April 25 2012 Marriott Hack Extortion Arrest and important websites hacked February 3 2012 Garside Juliette February 9 2012 Apple supplier Foxconn hacked in factory conditions protest The Guardian London Com tr ler nasil hacklendi CNNTurk May 4 2012 Turk hacker lar com tr uzantili sitelere saldirdi Hurriyet May 4 2012 Nic tr Sistemlerine Sizilinca tr Uzantili Siteler Baska Yerlere Yonlendirildi Turk Internet May 4 2012 Google Microsoft Yandex Paypal and important websites hacked Zone H Mirror May 4 2012 Jose Pagliery The inside story of the biggest hack in history August 5 2015 Retrieved August 19 2012 SCADA systems of 6 countries breached by Sl1nk Archived from the original on March 4 2016 Retrieved June 15 2015 Hackers Stole 65 Million Passwords From Tumblr New Analysis Reveals Motherboard Motherboard vice com May 30 2016 Retrieved July 1 2017 The Inside Story of Mt Gox Bitcoin s 460 Million Disaster WIRED WIRED March 3 2014 Retrieved March 14 2015 White House computer network hacked BBC BBC October 29 2014 Retrieved November 6 2015 Evan Perez Shimon Prokupecz April 8 2015 How the U S thinks Russians hacked the White House CNN Retrieved December 17 2016 Russian hackers behind the damaging cyber intrusion of the State Department in recent months used that perch to penetrate sensitive parts of the White House computer system according to U S officials briefed on the investigation Michael Angelo Santos Globe Website was Hacked by Blood Sec Hackers Coorms Zengerle Patricia Cassella Megan July 9 2015 Estimate of Americans hit by government personnel data hack skyrockets Reuters Retrieved July 9 2015 Barrett Devlin June 5 2015 U S Suspects Hackers in China Breached About four 4 Million People s Records Officials Say Wall Street Journal Retrieved June 5 2015 Sanders Sam June 4 2015 Massive Data Breach Puts 4 Million Federal Employees Records At Risk NPR Retrieved June 5 2015 ISIL Linked Kosovo Hacker Sentenced to 20 Years in Prison Justice Department of the United States September 23 2016 Romm Tony Geller Eric WikiLeaks supporters claim credit for massive U S cyberattack but researchers skeptical POLITICO Retrieved October 22 2016 Larson Selena November 22 2017 Uber s massive hack What we know CNNMoney Retrieved June 20 2019 Mussa Matthew April 30 2017 The Dark Overlord Netflix Hacker 5 Fast Facts You Need to Know Heavy com Retrieved July 1 2017 Brenner Bill May 16 2017 WannaCry the ransomware worm that didn t arrive on a phishing hook Naked Security Retrieved May 18 2017 Cyber attack Europol says it was unprecedented in scale BBC News May 13 2017 Retrieved May 18 2017 a b c Hern Alex Hackers publish private photos from cosmetic surgery clinic Technology The Guardian Retrieved May 31 2017 Plastic surgery clinics hacked 25 000 photos data online The Seattle Times Retrieved May 31 2017 Plastic surgery clinics hacked 25 000 photos data online Abcnews go com Archived from the original on May 31 2017 Retrieved May 31 2017 Global ransomware attack causes chaos BBC News June 27 2017 Retrieved June 27 2017 Constantin Lucian April 10 2019 Group behind TRITON industrial sabotage malware made more victims CSO Online Retrieved July 17 2019 The HBO Hackers Are Demanding 7 5 Million to Stop Leaking Game of Thrones 8 August 2017 Haselton Todd September 7 2017 Credit reporting firm Equifax says data breach could potentially affect 143 million US consumers cnbc com Retrieved October 16 2017 Hopkins Nick September 25 2017 Deloitte hit by cyber attack revealing clients secret emails Theguardian com Retrieved October 16 2017 Stack Liam December 6 2017 North Carolina County Refuses to Pay 23 000 Ransom to Hackers The New York Times ISSN 0362 4331 Retrieved June 20 2019 McWhirter Joseph De Avila and Cameron 23 March 2018 Atlanta Hit With Cyberattack Wall Street Journal Retrieved June 20 2019 Two Iranians Indicted in Atlanta on Cyber Crime Charges Wall Street Journal Associated Press 5 December 2018 Retrieved June 20 2019 Adams Ian May 1 2018 Wasaga Beach town hall computers seized by hackers Simcoe com Retrieved June 20 2019 Facebook Was Hacked 3 Things You Should Do After the Breach The social networking giant said attackers had exploited a weakness that enabled them to hijack the accounts of nearly 50 million users Here are some tips for securing your account September 28 2018 New York Times retrieved April 15 2021 Facebook says hackers accessed phone numbers email addresses as part of latest breach October 12 2018 Fox News retrieved April 15 2021 Rondinone Nicholas Hackers Target Connecticut City Force Officials To Pay 2 000 Ransom courant com Retrieved June 20 2019 Feds indict ransomware hackers of Allscripts others Modern Healthcare November 29 2018 Retrieved June 20 2019 Cimpanu Catalin Georgia county pays a whopping 400 000 to get rid of a ransomware infection ZDNet Retrieved June 20 2019 City of Albany experiences cyber attack WRGB March 30 2019 Retrieved June 20 2019 Moench Mallory March 31 2019 Albany cyber attack affecting records police Times Union Retrieved June 20 2019 Augusta city offices hit by computer virus Newscentermaine com 20 April 2019 Retrieved June 20 2019 Hacker wanted more than 100K to restore Maine city s computers Bangor Daily News 29 April 2019 Retrieved June 20 2019 FBI now investigating RobinHood ransomware attack on Greenville computers www witn com Retrieved June 20 2019 A Closer Look at the RobbinHood Ransomware BleepingComputer Shalby Colleen April 18 2019 Ryuk malware hacked a county government website It s been down for 6 days Los Angeles Times Retrieved June 20 2019 Chokshi Niraj May 22 2019 Hackers Are Holding Baltimore Hostage How They Struck and What s Next The New York Times ISSN 0362 4331 Retrieved June 20 2019 Campbell Ian Duncan Colin Baltimore city government computer network hit by ransomware attack baltimoresun com Retrieved June 20 2019 Zhang Ian Duncan Christine Analysis of ransomware used in Baltimore attack indicates hackers needed unfettered access to city computers baltimoresun com Retrieved June 20 2019 Kamp Scott Calvert and Jon 7 June 2019 Hackers Won t Let Up in Their Attack on U S Cities Wall Street Journal Retrieved June 20 2019 Karimi Faith 20 June 2019 Florida city to pay 600K ransom to hacker who seized computer systems weeks ago CNN Retrieved June 20 2019 Radiohead releases OK Computer sessions that hacker tried to ransom Naked Security June 12 2019 Retrieved June 20 2019 Anonymous Hacks China As Chinese Military Moves On Hong Kong Students Trapped at Polytechnic University Activist Post November 19 2019 Retrieved August 25 2020 Everington Keoni 5 February 2020 Anonymous creates pro Taiwan page inside UN website www taiwannews com tw Taiwan News Retrieved February 5 2020 Variety Jaiswal Priya May 6 2020 UP 23 year old man poses as police official to get mobile phone repaired lands in lockup www indiatvnews com Retrieved August 14 2020 Anonymous Stole and Leaked a Megatrove of Police Documents Wired Retrieved June 26 2020 An Interview With Anonymous George Floyd Protests Hacks And Press Freedom Activist Post June 23 2020 Retrieved June 26 2020 Anonymous Strike Back At Buffalo PD After Shoving Incident HotNewHipHop 6 June 2020 Retrieved June 6 2020 GroupAnon TangoDown again Those lasers are firing hot Twitter Retrieved June 6 2020 Anonymous hack Chicago police radios to play NWA s Fuck Tha Police NME Music News Reviews Videos Galleries Tickets and Blogs NME COM June 1 2020 Retrieved June 26 2020 Roblox accounts hacked to support Donald Trump BBC News June 30 2020 Retrieved August 13 2020 Wattpad data breach exposes account info for millions of users BleepingComputer Retrieved August 14 2020 Everything We Know About the Reddit Hack Including Who Is Claiming Responsibility Newsweek 7 August 2020 Retrieved August 11 2020 Einmal zum Mond und wieder zuruck Hacker der Hochschule Bonn Rhein erfolgreich beim Hack A Sat idw online de in German Retrieved August 16 2020 The Race to Hack a Satellite at DEF CON Dark Reading 13 August 2020 Retrieved August 16 2020 Gostevaya kniga Actual archive of defaced page August 18 2020 Archived from the original on 2020 08 18 Retrieved August 25 2020 Socookre Queen Elsa hacks Belarus website and teases Lukashenko SIC Archived from the original on 2020 08 25 Retrieved August 25 2020 Farrer Martin 26 August 2020 New Zealand stock exchange hit by cyber attack for second day The Guardian Retrieved 11 September 2020 Eddy Melissa Perlroth Nicole 18 September 2020 Cyber Attack Suspected in German Woman s Death The New York Times Retrieved 19 September 2020 Perlroth Nicole 2020 10 28 Officials Warn of Cyberattacks on Hospitals as Virus Cases Spike Government officials warned that hackers were seeking to hold American hospitals data hostage in exchange for ransom payments The Coronavirus Outbreak The New York Times Archived from the original on 2020 11 03 Sanger David E Perlroth Nicole 2020 10 12 Microsoft Takes Down a Risk to the Election and Finds the U S Doing the Same Fearing Russian ransomware attacks on the election the company and U S Cyber Command mounted similar pre emptive strikes It is not clear how long they may work US Politics The New York Times October 21 2020 ed Archived from the original on 2020 11 04 Krebs Christopher Cox 2020 11 29 Fired director of U S cyber agency Chris Krebs explains why President Trump s claims of election interference are false In Pelley Scott Cameron ed 60 Minutes Season 53 Episode 13 Event occurs at 11 30 CBS Archived from the original on 2020 12 02 It was quiet There was no indication or evidence that there was any sort of hacking or compromise of election systems on before or after November third Bing Christopher 13 December 2020 Suspected Russian hackers spied on U S Treasury emails sources Reuters ArcTitan 2021 02 21 U S Treasury Hit by Email Hacks ArcTitan Retrieved 2021 03 16 nyc311 December 6 2020 New York City 311 s tweet responding to the bomb threat Tweet Archived from the original on 6 December 2020 via Twitter Plane Lands Safely at JFK Airport After Report of Bomb Threat Officials NBC New York Retrieved 12 December 2020 Aeroflot Boeing 777 Evacuated After New York Bomb Threat Simple Flying 7 December 2020 Retrieved 12 December 2020 Anonymous claims hacking of multiple Russian websites to deliver a Christmas Gift Daily Kos 28 December 2020 Archived from the original on 2020 12 28 Retrieved 29 December 2020 Anonymous Malaysia hackers say they defaced five government websites Coconuts KL Coconuts 1 February 2021 Retrieved 19 February 2021 Ar Zurairi 25 January 2021 Hacktivist group Anonymous Malaysia resurfaces vows cyber attack against govt over data breaches Malay Mail www malaymail com Retrieved 19 February 2021 Cimpanu Catalin Malaysia arrests 11 suspects for hacking government sites ZDNet Retrieved 19 February 2021 11 suspects of Anonymous Malaysia hacker group nabbed The Star www thestar com my Retrieved 19 February 2021 Police search Chinese Consulate in Auckland after bomb threat Stuff 5 February 2021 Retrieved 5 February 2021 Bombs have been put in Chinese embassies Aucklife 4 February 2021 Archived from the original on 2021 02 04 Retrieved 20 February 2021 Myanmar Hackers Take Down Military Run Websites The Irrawaddy 17 February 2021 Retrieved 19 February 2021 Cybersecurity Millions of Facebook accounts hacked April 5 2021 KTNV TV Las Vegas Nevada retrieved April 15 2021 Facebook hack How to find out if you were one of the 533 million Facebook users hacked Fox5 TV San Diego California retrieved April 15 2021 2021 04 13 Facebook data breach explained How the world s largest social media platform got hacked April 13 2021 Times of India retrieved April 15 2021 Goodin Dan 30 April 2021 More US agencies potentially hacked this time with Pulse Secure exploits Ars Technica Retrieved 9 May 2021 Check Your Pulse Suspected APT Actors Leverage Authentication Bypass Techniques and Pulse Secure Zero Day FireEye Retrieved 9 May 2021 Cyber attack shuts down U S fuel pipeline jugular Biden briefed Reuters 2021 05 08 Retrieved 13 June 2021 Explained What is the data breach that has hit Air India customers The Indian Express 2021 05 22 Retrieved 2021 05 23 Air India cyberattack Personal data of over 4 5 million passengers leaked The Irish Times Retrieved 2021 05 23 Saudi Aramco confirms data leak after 50 million cyber ransom demand ARS Technica 2021 07 22 Retrieved 2021 07 22 Hackers reportedly demand 50m from Saudi Aramco over data leak BBC 2021 07 22 Saudi Aramco Confirms Data Leak After Reported Cyber Ransom bloomberg 2021 07 22 T Mobile Shares Updated Information Regarding Ongoing Investigation into Cyberattack T Mobile Newsroom T Mobile Newsroom Krebs Brian T Mobile Breach Exposed SSN DOB of 40M People Krebs on Security Vaas Lisa T Mobile gt 40 Million Customers Data Stolen threatpost com Hill Michael 27 August 2021 The T Mobile data breach A timeline CSO Online a b Goforth Claire September 14 2021 Anonymous to release massive data set of the far right s preferred web hosting company The Daily Dot Retrieved September 14 2021 a href Template Cite web html title Template Cite web cite web a CS1 maint url status link Cimpanu Catalin September 15 2021 Anonymous hacks and leaks data from domain registrar Epik The Record by Recorded Future Retrieved September 16 2021 a href Template Cite web html title Template Cite web cite web a CS1 maint url status link Thalen Mikael September 29 2021 New leak of Epik data exposes company s entire server The Daily Dot Retrieved September 29 2021 a href Template Cite web html title Template Cite web cite web a CS1 maint url status link Thalen Mikael October 4 2021 Anonymous releases data on Texas GOP in latest Epik hack dump The Daily Dot Retrieved October 4 2021 a href Template Cite web html title Template Cite web cite web a CS1 maint url status link Warren Tom 2021 10 06 Twitch source code and creator payouts part of massive leak The Verge Retrieved 2021 10 07 Browning Kellen 2021 10 06 A potentially disastrous data breach hits Twitch the livestreaming site The New York Times ISSN 0362 4331 Retrieved 2021 10 07 Wortley Free Thrompson Chris Allison Forrest 9 December 2021 Log4Shell RCE 0 day exploit found in log4j 2 a popular Java logging package LunaSec Retrieved 12 December 2021 CVE 2021 44228 Common Vulnerabilities and Exposures Retrieved 12 December 2021 a b c d Turton William Gillum Jack Robertson Jordan Inside the Race to Fix a Potentially Disastrous Software Flaw www bloomberg com Duckett Chris Log4j RCE activity began on December 1 as botnets start using vulnerability ZDNet Cisco Talos said in a blog post that it observed activity for the vulnerability known as CVE 2021 44228 from December 2 and those looking for indicators of compromise should extend their searches to at least that far back a b Berger Andreas 17 December 2021 What is Log4Shell The Log4j vulnerability explained and what to do about it Dynatrace news Prince Matthew Tweet Twitter Earliest evidence we ve found so far of Log4J exploit is 2021 12 01 04 36 50 UTC That suggests it was in the wild at least 9 days before publicly disclosed However don t see evidence of mass exploitation until after public disclosure The top U S cybersecurity defense official Jen Easterly deemed the flaw one of the most serious I ve seen in my entire career if not the most serious Woodyard Chris Critical vulnerability Smaller firms may find it harder to stop hackers from exploiting Log4j flaw USA Today Retrieved 2021 12 17 a href Template Cite web html title Template Cite web cite web a CS1 maint url status link Expert discusses what you need to know about most serious security breach ever ABC7 San Francisco Associated Press 20 December 2021 Chinese and Iranian hackers exploit Log4j computer flaw affecting hundreds of millions Associated Press 15 December 2021 Starks Tim 13 December 2021 CISA warns most serious Log4j vulnerability likely to affect hundreds of millions of devices CyberScoop Goodin Dan 2021 12 13 As Log4Shell wreaks havoc payroll service reports ransomware attack Ars Technica Retrieved 2021 12 17 arguably the most severe vulnerability ever a href Template Cite web html title Template Cite web cite web a CS1 maint url status link Barrett Brian The Next Wave of Log4J Attacks Will Be Brutal Wired ISSN 1059 1028 Retrieved 2021 12 17 Hunter Tatum de Vynck Gerrit 20 December 2021 The most serious security breach ever is unfolding right now Here s what you need to know The Washington Post a href Template Cite news html title Template Cite news cite news a CS1 maint url status link Rudis boB 10 December 2021 Widespread Exploitation of Critical Remote Code Execution in Apache Log4j Rapid7 Blog Rapid7 Restrict LDAP access via JNDI by rgoers 608 Log4j 5 December 2021 Retrieved 12 December 2021 via GitHub tweakers 2022 02 14 Hackersclub CCC vindt 6 4 miljoen persoonsgegevens via vijftigtal datalekken in Dutch Retrieved 2022 02 17 Chaos Computer Club 2022 02 14 Chaos Computer Club meldet 6 4 Millionen Datensatze in uber 50 Leaks in German Retrieved 2022 02 17 Tribuna novini Sum ta Sumskoyi oblasti Tribuna in Ukrainian Archived from the original on 9 March 2022 Retrieved 9 March 2022 Wu Crystal 3 March 2022 Australian Russian Embassy evacuated after suspicious package delivered skynews Retrieved 9 March 2022 Anonymous hacks Russian federal agency releases 360 000 documents The Jerusalem Post Jpost com Retrieved 6 April 2022 Anonymous Hits 3 Russian Entities Leaks 400 GB Worth of Emails 12 April 2022 Retrieved 12 April 2022 Anonymous Hits Russian Ministry of Culture Leaks 446GB of Data 12 April 2022 Retrieved 13 April 2022 Gijon City Council Spain was attacked by GERVASIA 19 April 2022 Retrieved 19 April 2022 Anonymous NB65 Claims Hack on Russian Payment Processor Qiwi 9 May 2022 Retrieved 9 May 2022 Jankowicz Mia Hackers replaced Russian TV schedules during Putin s Victory Day parade with anti war messages saying the blood of Ukrainians is on Russians hands Business Insider Retrieved 9 May 2022 Hacker claims to have obtained data on 1 billion Chinese citizens the Guardian 2022 07 04 Retrieved 2022 07 09 Everington Keoni 3 August 2022 Anonymous welcomes Nancy Pelosi to Taiwan on hacked Chinese government website Taiwan News 2022 08 03 15 29 00 Taiwan News Retrieved 23 August 2022 Everington Keoni 9 August 2022 Anonymous thanks Pelosi for Taiwan trip on hacked Chinese website Taiwan News 2022 08 09 18 58 00 Taiwan News Retrieved 23 August 2022 Further reading EditLundell Allan 1989 Virus The secret world of computer invaders that breed and destroy Wayne A Yacco ISBN 0 8092 4437 3 Landreth Bill 1985 Out of the Inner Circle Tempus Books of Microsoft Press ISBN 1 55615 223 X Bowcott Owen Hamilton Sally 1990 Beating the System Hackers phreakers and electronic spies Bloomsbury ISBN 0 7475 0513 6 Fites Philip Johnston Peter Kratz Martin 1989 The computer virus crisis Van Nostrand Reinhold ISBN 0 442 28532 9 Sterling Bruce 1992 The Hacker Crackdown Law and disorder on the electronic frontier Penguin ISBN 0 14 017734 5 Gold Steve 1989 Hugo Cornwall s New Hacker s Handbook London Century Hutchinson Ltd ISBN 0 7126 3454 1 Retrieved from https en wikipedia org w index php title List of security hacking incidents amp oldid 1130886891, wikipedia, wiki, book, books, library,

article

, read, download, free, free download, mp3, video, mp4, 3gp, jpg, jpeg, gif, png, picture, music, song, movie, book, game, games.