State of (in)security - Week 11, 2024
Take action: Avoid a cascade of vulnerabilities and exploiting from vendor to customer - Always plan for clear isolation between organizations and systems. Vendor systems may be vulnerable, so restrict access on a per-need basis secure, limit admin accounts and monitor.
Learn More
In the week between March 11, 2024, midnight and March 18, 2024, midnight we witnessed a total of:
- 8 advisory/vulnerability events
- 29 incident/data breach events
Week over Week comparison of week 11 2024 vs week 10 2024 is: terrible
- Advisories and incidents are fairly close, advisories are increased by one to 8 from 7 in the previous week and advisories have jumped to 29 from the 22 in previous week.
- The number of known impacted individuals has jumped from 20 million in week 10 to over 80 million in week 11.
We also shared 1 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 80,393,652 impacted individuals across 11 incidents, with the largest breach being the Suspected data leak of AT&T exposes 70 million people, company denies breach incident exposing 70,000,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Cause breakdown of incidents
| Cause | Number of incidents |
|---|---|
| Malware, Ransomware and Related Attacks | 7 |
| Software Vulnerability and SDLC Exploits | 3 |
| Unauthorized access | 2 |
| Denial-of-Service Attacks | 1 |
| Social Engineering and Phishing | 1 |
| Third Party Compromise | 1 |
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| Finance | 6 |
| Government | 5 |
| IT/Software/Technology | 4 |
| Healthcare | 3 |
| Consulting/Professional Services | 3 |
| Education | 2 |
| Utilities | 1 |
| Entertainment/Leisure | 1 |
| Media | 1 |
| Other | 1 |
| Telecommunications | 1 |
| Aviation | 1 |
Read the Event Details of the Week
Knowledge
Vulnerabilities
- critical vulnerability | Progress Software warns of OpenEdge Authentication Gateway critical vulnerability
- critical vulnerability | ChatGPT-Next-Web user interface vulnerable to critical SSRF flaw
- critical vulnerability | Microsoft releases March 2024 patch package, fixes two critical issues in Hyper-V
- critical vulnerability | SAP releases March update, patches at least three critical issues
- critical vulnerability | Fortinet reports two critical and three high severity issues, plan to patch
- critical vulnerability | IBM patches Instana Observability software, fixes Node.js flaws
- critical vulnerability | Arcserve Unified Data Protection fixes critical vulnerabilities
- critical vulnerability | Discontinued miniOrange Wordpress plugins expose sites to takeover
Incidents
- data breach | Paysign investigates data breach claims on hacking forum
- data breach | UC San Diego Health reports data breach caused by phishing attack
- data breach | UT Southwestern Medical Center reports data breach reports, impacting over 2k people
- data breach | Don't send data to private emails - Texas Health and Human Services Commission reports data leak
- data breach | Roku has over 15,000 accounts hacked and sold on the dark web
- data breach | Eastern Radiologists report data breach, exposing over 800k patients
- data breach | Bradford-Scott Data reports data breach
- data breach | Microfinance database in Kazakhstan breached, exposing 2m citizens
- data breach | Malaysian airline AirAsia is investigating claims of data breach of 5 million people
- data breach | Mexican Banregio possibly hit by cyberattack, data breach
- data breach | LockBit gang takes responsiblity for attack on South African pension fund
- data breach | Nations Direct Mortgage reports data breach
- data breach | Hacker group claims breach on Viber platform and stealing 740GB of data
- data breach | Austin Independent School District leaks student data
- data breach | Remilla DAO funds and NFTs stolen
- data breach | Suspected data leak of AT&T exposes 70 million people, company denies breach
- data breach | Hackers linked to Iran leak data of Israeli students
- data breach | Gerson Lehrman Group reports data breach
- data breach | Acer Philippines report third party data breach
- data breach | French unemployment agency France Travail reports data breach, impacting 43 million
- data breach | R1 RCM reports data breach affecting patient data
- data breach | MediaWorks is investigating alleged breach exposing data of 2.4 million customers
- data breach | IMF Investigates cybersecurity breach email accounts
- denial of service | Alabama government sites hit by cyber attacks
- ransomware | 8Base ransomware gang claims attack on Australian RSL group
- ransomware | BlackByte claims attack at Encina Wastewater Authority
- ransomware | MarineMax boat seller reports cyberattack to SEC
- ransomware | Pennsylvania Scranton School District hit by ransomware
- ransomware | New Mexico District Attorney hit by ransomware attack
