In April 2021, the FBI arrested 28-year-old Seth Aaron Pendley from Wichita Falls, Texas, for plotting to destroy an Amazon Web Services (AWS) data center in Virginia. Pendley's objective was to "kill off about 70% of the internet," believing that AWS...
The Indian government officially denied reports that data breaches at Air India, BigBasket, and Domino's compromised the email accounts and passwords of government officials using the National Informatics Centre (NIC) email system. The government stat...
Between June 5th and June 9th, 2021, Al Jazeera, a Qatar-based news agency, experienced a series of cyberattacks targeting its news publishing platform. The attacks, which peaked on the evening of June 6th, aimed to breach, disrupt, and control parts...
NewsBlur, an RSS newsreader, experienced a security event in June 2021 when their MongoDB database was deleted. The perpetrator demanded a ransom of 0.03 bitcoin, claiming to have stolen 250 GB of data. However, analysis of network traffic and databas...
In July 2021, the company announced that an attempt was made to shut down its computer operations but that they were able to treat patients and provide services to the community as usual. They initiated an investigation to determine what transpire...
In August 2021, Sanford Health, a healthcare system headquartered in Sioux Falls, experienced an attempted cyberattack. Sanford Health's IT staff detected the incident and took aggressive measures to contain the impact. While the investigation is on...
In August 2021, the U.S. State Department experienced a significant cybersecurity breach. The attack was first reported by a Fox News journalist who learned that the Department of Defense Cyber Command had notified Congress of the event. While the S...
In September 2021, the port disclosed that it had effectively defended itself against a cyberattack in August. They explained they had followed their Facilities Security Plan, as guided under the Maritime Transportation Security Act (MTSA), and no ope...
In August 2021, the company mitigated a record-breaking 2.4 terabytes per second (Tbps) distributed denial of service (DDoS) attack targeting a customer in Europe. This attack surpassed the previous record of a 2.3 Tbps attack mitigated by Amazon's AW...
In November 2021, Mahan Air, Iran's second-largest airline, experienced a cyberattack on its internal systems. The attack disrupted access to the airline's website, making it inaccessible to users. Despite the attack, Mahan Air reported that its fligh...
Cyber Security Case Studies has worked with a number of groups to develop these risk effect categories which represent a plain-english description of the impacts seen in public cyber events alongside their definition: