State of (in)security - Week 17, 2024
Take action: If you are developing applications, don't try to reinvent the encryption wheel. Adopt standard, open source and publicly tested encryption protocols and avoid creating proprietary ones. Standard protocols are tested too many times to have an immediate flaw.
Learn More
In the week between April 22, 2024, midnight and April 29, 2024, midnight we witnessed a total of:
- 6 advisory/vulnerability events
- 18 incident/data breach events
Week over Week comparison of week 17 2024 vs week 16 2024:
- Advisories and Incidents have dropped. Advisories are down, from 11 in week 16 to 8 in week 17. Same thing for incidents, from 22 in week 16 to 6 in week 17.
- The number of known impacted individuals has increased from 5.5 million in week 16 to 14.5 million in week 17.
We also shared 5 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 14,556,500 impacted individuals across 6 incidents, with the largest breach being the Kaiser Permanente reports data breach, 13.4M people impacted incident exposing 13,400,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Cause breakdown of incidents
| Cause | Number of incidents |
|---|---|
| Third Party Compromise | 5 |
| Malware, Ransomware and Related Attacks | 3 |
| Human bad security behaviour | 1 |
| System Misconfiguration Exploits | 1 |
| Unauthorized access | 1 |
| Software Vulnerability and SDLC Exploits | 1 |
| Legal and Regulatory Consequences | 1 |
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| Healthcare | 5 |
| Insurance | 2 |
| IT/Software/Technology | 2 |
| Finance | 2 |
| Government | 2 |
| Non-profit/Charity | 1 |
| Education | 1 |
| Food and Beverage | 1 |
| Military/Defense | 1 |
| Consulting/Professional Services | 1 |
Read the Event Details of the Week
Knowledge
- active exploit | Cisco reports two flaws targeted by of state-sponsored hackers attacking government entities
- awareness | Encryption flaws risks exposure of text typed in Android cloud keyboard apps
- awareness | Forking a GitHub repository may expose your code flaws to others
- active attack | Microsoft warns of 2 year old vulnerability actively exploited by hacking groups
- active exploit | Seven year old MS office bug still used to send malware
Vulnerabilities
- critical vulnerability | CISA reports vulnerabilities in multiple Honeywell products, some critical
- critical vulnerability | Google releases new Chrome, patching a critical vulnerability
- critical vulnerability | Multiple flaws found in AI systems, at least 16 critical
- critical vulnerability | Perforce Akana Community Manager Portal vulnerable to SSRF attacks
- critical vulnerability | Siemens alerts for patching of RUGGEDCOM APE1808 Devices CPalo Alto Networks Virtual NGFW
- critical vulnerability | WP Automatic plugin for WordPress vulnerable to SQL injection, actively attacked
Incidents
- data breach | Coffee County in Georgia reports cyberattack
- data breach | Indian ICICI Bank app leaks card data, impacting 17k customers
- data breach | BerryDunn Health Analytics reports data breach exposing 1.1M people
- data breach | Catholic Diocese of Cleveland reports data breach caused by compromised email account
- data breach | Kisco Senior Living data breach possibly exposes 26k residents
- data breach | Educational Computer Systems reports data breach impacting Brandeis University students
- data breach | WebTPA Employer Services reports data breach exposing Transamerica Life Insurance
- data breach | Catholic Medical Center reports data breach exposing 2,800 patients
- data breach | Mobile company Nothing community member data leaked online
- data breach | University Systems of Georgia reports MOVEit related data breach
- data breach | Direct Federal Credit Union reports third party data breach
- data breach | South Texas Oncology and Hematology reports cyberattack, data breach
- data breach | Coast Guard Reserve reports data breach
- data breach | Kaiser Permanente reports data breach, 13.4M people impacted
- ransomware | Synlab Italia shuts down operations due to ransomware attack
- ransomware | Kansas City traffic management system down after cyberattack
- ransomware | Alcohol sales in Sweden impacted by ransomware attack
- ransomware | Qiulong ransomware group claims responsibility for attack on Brazilian plastic surgery systems
