State of (in)security - Week 12, 2024
Take action: It doesn't matter how big your company is. Everyone makes the same mistakes - data buckets are left unsecured, responsible disclosure protocols are missing... Security is about a lot of discipline and persistence, otherwise things fall through the cracks and onto the public internet.
Learn More
In the week between March 18, 2024, midnight and March 25, 2024, midnight we witnessed a total of:
- 9 advisory/vulnerability events
- 24 incident/data breach events
Week over Week comparison of week 11 2024 vs week 10 2024 is: massive improvement
- Advisories and incidents are fairly close, advisories are increased by one to 9 from 8 in the previous week and incidents have reduced to 24 from the 29 in previous week.
- The great news is the number of known impacted individuals has dropped from 80 million in week 11 to 900,000 million in week 12.
We also shared 2 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 906,521 impacted individuals across 4 incidents, with the largest breach being the Philips Respironics reports data breach incident exposing 457,152 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Cause breakdown of incidents
| Cause | Number of incidents |
|---|---|
| Malware, Ransomware and Related Attacks | 7 |
| Third Party Compromise | 3 |
| Social Engineering and Phishing | 1 |
| Software Vulnerability and SDLC Exploits | 1 |
| System Misconfiguration Exploits | 1 |
| Unauthorized access | 1 |
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| Healthcare | 6 |
| IT/Software/Technology | 4 |
| Government | 3 |
| Education | 2 |
| Manufacturing | 2 |
| Insurance | 1 |
| Entertainment/Leisure | 1 |
| Transport/Logistics | 1 |
| Non-profit/Charity | 1 |
| Pharmaceuticals | 1 |
| Retail | 1 |
| Finance | 1 |
Read the Event Details of the Week
Knowledge
- active exploit | Fortinet warns users that FortiClientEMS flaw is actively exploited by hackers
- awareness | Researchers report Apple silicon CPU vulnerability that can expose encryption keys
Vulnerabilities
- critical vulnerability | Google fixes high severity flaws in Chrome, time to update
- critical vulnerability | Ivanti fixes critical flaws in Standalone Sentry and Neurons product, patch as soon as possible
- critical vulnerability | Atlassian fixes SQL injection flaw in Bamboo, other issues in Bitbucket, Confluence, and Jira
- critical vulnerability | Unitronics fixes multiple critical issues in Unistream and Unilogic Products
- critical vulnerability | Siemens fixes critical issue in Sintesoand Cerberus Fire Protection Systems
- critical vulnerability | Security vulnerabilities reported in OpenMetadata platform, including two critical
- critical vulnerability | Mozilla Firefox releases patch to fix critical flaw, patch ASAP
- critical vulnerability | Zoom critical flaw exposes windows desktop clients to privilege escalation attacks
- critical vulnerability | Fortra fixes remote code flaw in FileCatalyst file transfer tool
Incidents
- critical vulnerability | Researcher reports that Fujitsu leaked customer data, AWS keys and passwords for nearly a year
- data breach | Mintlify documentation startup leaks customer GitHub tokens, exposes 91 customers
- data breach | South China Athletic Association breached, data of 70k people exposed
- data breach | Weirton Medical Center reports data breach
- data breach | IronRock Insurance reports data breach
- data breach | Center for Creative Leadership reports data breach
- data breach | Belgian healthcare retailer reports cyberattack and data breach
- data breach | Saint Louis University reports data breach, exposing 93k people
- data breach | Giant Tiger discount stores report data breach
- data breach | St. Mary Parish school board reports cybersecurity incident
- data breach | DNA testing Veritas Genetics reports data breach
- data breach | NHS Dumfries and Galloway reports cyber attack, possible data breach
- data breach | Fujitsu reports malware detected and data breach
- data breach | Jacksonville Beach reports cyberattack, data breach
- data breach | Regional One Health reports third party data breach
- data breach | Philips Respironics reports data breach
- data breach | CAIRE, Inc. reports data breach, notifies consumers
- data breach | V12 Software reports data breach, exposing over 200k people
- data breach | SatoshiLabs Trezor Twitter account hacked due to phishing
- ransomware | Radiant Logistics cuts off its Canada operations after cyberattack
- ransomware | Polycab cables and wires manufacturer reports ransomware attack
- ransomware | City of Pensacola systems knocked out by cyberattack
- ransomware | Tarrant Appraisal District reports ransomware attack
- ransomware | Lockbit gang claims breach of Crinetics Pharmaceuticals
