What were the key cybersecurity events reported between April 29 and May 6, 2024?

Between April 29 and May 6, 2024, there were 3 advisory/vulnerability events and 24 incident/data breach events reported. The largest incident involved a hacker group claiming to have published PII of 2 million Chinese Communist Party members.

How did the number of cybersecurity advisories and incidents change in week 18 of 2024 compared to week 17?

In week 18 of 2024, the number of advisories decreased from 8 to 3, while the number of incidents increased from 18 to 24 compared to week 17. The number of known impacted individuals dropped from 14.5 million to 7 million.

What were the main causes of the cybersecurity incidents reported last week?

The main causes of the incidents included Malware, Ransomware, and Related Attacks (6 incidents); Software Vulnerability and SDLC Exploits (3); Third Party Compromise (3); System Misconfiguration Exploits (2); Unauthorized access (2); Human bad security behavior (1); and Social Engineering and Phishing (1).

Which industries were most affected by the cybersecurity incidents last week?

The most affected industries included Government (6 incidents), Finance (4), Healthcare (3), IT/Software/Technology (2), Non-profit/Charity (2), and several others such as Media, Aviation, and Pharmaceuticals.

What were the notable cybersecurity advisories shared last week?

Notable advisories shared last week included critical vulnerabilities in HPE Aruba's ArubaOS, Judge0 online execution system's sandbox escape vulnerabilities, and Ubuntu's klibc component.

Knowledge

State of (in)security - Week 18, 2024

published: May 6, 2024

Take action: The most terrifying scenario - a disgruntled employee / contractor stealing data and publishing it online. Always make sure you have proper access control limits and the employees don't have access to the entire data set.

Learn More

In the week between April 29, 2024, midnight and May 6, 2024, midnight we witnessed a total of:

3 advisory/vulnerability events
24 incident/data breach events

Week over Week comparison of week 18 2024 vs week 17 2024:

We also shared 1 practical knowledge items

Total impacted individuals via the events of the week

There were a total of 7,067,628 impacted individuals across 10 incidents, with the largest breach being the Hacker USDoD publishes claimed PII information of 2M Chinese Communist Party members incident exposing 2,000,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Cause breakdown of incidents

Cause	Number of incidents
Malware, Ransomware and Related Attacks	6
Software Vulnerability and SDLC Exploits	3
Third Party Compromise	3
System Misconfiguration Exploits	2
Unauthorized access	2
Human bad security behaviour	1
Social Engineering and Phishing	1

Industry breakdown of incidents

Industry	Number of incidents
Government	6
Finance	4
Healthcare	3
IT/Software/Technology	2
Non-profit/Charity	2
Media	1
Aviation	1
Pharmaceuticals	1
Consulting/Professional Services	1
Education	1
Entertainment/Leisure	1
Hospitality/Events	1

Read the Event Details of the Week

Knowledge

active attack | Hackers actively exploit the GitLab 'Forgot Your Password' vulnerability

Vulnerabilities

critical vulnerability | HPE Aruba release fixes for critical vulnerabilities in ArubaOS
critical vulnerability | Judge0 online execution system has critical sandbox escape vulnerabilites
critical vulnerability | Ubuntu patches vulnerabilities in klibc component

Incidents

data breach | Hong Kong government entities leak data, ordered to remove from public clouds
data breach | Facial Recognition Software of Tamil Nadu Police hacked, data offered for sale
data breach | Australian OutABox gaming and hospitality reports massive data breach
data breach | Panda Restaurants reports cyberattack, data breach
data breach | Dropbox reports security breach of Dropbox Sign service, exposing credentials and PII
data breach | Robeson county reports data breach
data breach | British Columbia libraries cooperative hit by cyber attack, data breach
data breach | MedStar Health reports data breach caused by breach of email accounts
data breach | Australian Monash Healt and Melbourne Polytechnic report third party data breach
data breach | Data breach potentially exposing 400k Bitfinex customers, but leak content put in question
data breach | Debt collection agency FBCS reports data breach exposing almost 2M people
data breach | Charity Extern reporting data breach after ransomware attack
data breach | Hacker USDoD publishes claimed PII information of 2M Chinese Communist Party members
data breach | LA County Department of Health Services reports data breach exposing patient data
data breach | Qantas app leaks other peoples' booking details causing data breach
data breach | J.P. Morgan application bug exposes data of 451,000 individuals
ransomware | Mainz University Medical Center data breach exposes 280K email addresses
ransomware | Singapore law firm Shook Lin & Bok reports ransomware
ransomware | Firstmac lender reports ransomware attack and data breach
ransomware | U.S. Department of Energy receives extortion messages caused by MOVEit attack
ransomware | Hong Kong Arts Development Council reports cyberattack, claims no data leak detected
ransomware | Canadian pharmacy London Drugs shuts down services due to cyberattack
ransomware | System Misconfiguration exposes record label Empire Distribution data
ransomware | Philadelphia Inquirer reports data breach impacting over 25K people

Read More
A real story about US Government agency hacked …
State of (in)security - Week 7, 2024
State of (in)security - Week 44, 2025
State of (in)security - Week 31, 2024
Cursor app (and others) has bypass flaw of …