81.April 2011.Google reported a phishing effort to compromise hundreds of Gmail passwords for accounts of prominent people, including senior U.S. officials. Google attributes the effort to China. 82.April 2011.Employees at Oak ridge National Laboratory received bogus emails with malware attachments. Two machines were infected and “a few megabytes” of data were extracted before the Lab was able to cut its internet connection. Oak Ridge was the target of an intrusion in 2007.
Last Updated 8/7/2014 983.May 2011.Cybercriminals masquerading as member of the hacktivist group “Anonymous” penetrated the PlayStation network. Sony estimated that personal information for more than 80 million users was compromised and that the cost of the breach at over $170 million. 84.June 2011.The IMF’s networks were compromised reportedly by a foreign government using fraudulent emails with malware attachments, and a “large quantity of data, including documents and e-mails,” are exfiltrated.85.June 2011.Citibank reported that credit card data for 360,000 of its customers were exfiltrated using a relatively simple manipulation of URLs. 86.July 2011.In a speech unveiling the Department of Defense’s cyber strategy, theDeputy Secretary of Defense mentioned that a defense contractor was hacked and 24,000 files from the DOD were stolen. 87.July 2011.The German Bundespolizei (Federal Police) and the Bundeszollverwaltung (Federal Customs Service) discovered that servers used to locate serious criminals and terrorism suspects by gathering information from GPS systems in cars and mobile phones were penetrated (using a phishing attack)as early as 2010. Following the cyberattack, the relevant servers had to be temporarily shut down to prevent further data losses. 88.July 2011.South Korea said hackers from China had penetrated an internet portal and accessed phone numbers, e-mail addresses, names and other data for 35 million Koreans. 89.August 2011.According to sources in the Japanese government, Mitsubishi Heavy Industries and twenty other Japanese defense and high tech firms were the target of an effort to extract classified defense information. Japanese officials believed the exploits all originated from the same source. The intruder used email with a malicious attachment whose contents were the same as a legitimate message sent 10 hours earlier. 90.August 2011.Email and documents from 480 members of the Japanese Diet and lawmakers and their staff were compromised for a month after a phishing attack implanted a Trojan on members’ computers and Diet servers. The hijacked machines communicated with a server in China and the attackers included Chinese characters in their code. 91.September 2011.Unknown attackers hacked a Dutch certificate authority, allowing them to issue more than 500 fraudulent certificates for major companies and government agencies. The certificates are used to verify that a website is genuine. By issuing a false certificate, an attacker can pretend to be a secure website, intercept e-mail, or install malicious software.