Wired goes over the major data breaches and cyber attacks of the decade. Huge amounts of data were stolen from both corporations and government agencies, but what really surprised me was the amount of actual cyber warfare between nation states.
- Stuxnet – attack by U.S. and Israeli governments against Iran in 2010. One thing I didn’t know is this targeted industrial control software made by Siemens. So major industries are controlled by computers, and hacking can increasingly have real-world consequences.
- Shamoon (2012) – attack by Iran against Saudi Aramco, “inspired” and possibly retaliation for the Stuxnet attack.
- Sony (2014) – attack by North Korea against Sony in response to a movie depicting the assassination of a North Korean leader
- Office of Personnel Management (2013-2014) – attack by Chinese government on the U.S. government. This was a massive information theft but was not intended to shut anything down.
- Russia vs. Ukraine (2015-2016) – several attacks leading to blackouts and confusion coordinated with an actual military attack.
- Shadow Brokers (2016-2017) – NSA malware stolen and released into the wild, probably by North Korean hackers. The most well-known one was ransomware “Wannacry” which disrupted major corporations including hospitals.
- And of course, Russian propaganda and disinformation during the 2016 U.S. election.
- NotPetya (2017) – this was Russian malware targeted at Ukraine, but so bad it affected computers around the world and blew back to affect Russia itself