State of (in)security - Week 21, 2024
Take action: If you are making any software apply good security practices in your coding and API design. But this is especially important if you are developing software that people don't really like - whether it's spyware, employee monitoring or data scrapers, since everyone will be looking for your mistakes. You have no friends, so be great at security.
Learn More
In the week between May 20, 2024, midnight and May 27, 2024, midnight we witnessed a total of:
- 8 advisory/vulnerability events
- 26 incident/data breach events
Week over Week comparison of week 21 2024 vs week 20 2024:
- Advisories have increased while Incidents have reduced. Advisories are down from 14 in week 20 to 8 in week 21. Incidents are up from 22 in week 20 to 26 in week 21.
- The number of known impacted individuals has increased massively, from 270,000 in week 20 to just over 503,000 in week 21.
We also shared 1 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 503,178 impacted individuals across 6 incidents, with the largest breach being the Australian investment firm XM group customer data of over 400k people possibly leaked incident exposing 438,522 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Cause breakdown of incidents
| Cause | Number of incidents |
|---|---|
| Malware, Ransomware and Related Attacks | 6 |
| Unauthorized access | 4 |
| Human bad security behaviour | 2 |
| Software Vulnerability and SDLC Exploits | 2 |
| Social Engineering and Phishing | 1 |
| System Misconfiguration Exploits | 1 |
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| Government | 6 |
| Finance | 4 |
| Education | 3 |
| Non-profit/Charity | 3 |
| IT/Software/Technology | 2 |
| Healthcare | 2 |
| Telecommunications | 1 |
| Gas/Oil | 1 |
| Hospitality/Events | 1 |
| Manufacturing | 1 |
| Pharmaceuticals | 1 |
| Consulting/Professional Services | 1 |
Read the Event Details of the Week
Knowledge
Vulnerabilities
- critical vulnerability | Atlassian patches PostgreSQL JDBC driver SQL injection in Jira and Confluence Server
- critical vulnerability | Critical flaw in Fluent Bit logging/metrics tool puts major products and platforms at risk
- critical vulnerability | Critical vulnerability in GitHub Enterprise Server enables access for attackers
- critical vulnerability | Google patches fourth actively exploited Chrome flaw in two weeks
- critical vulnerability | Google releases Chrome 125 patching four high-severity flaws
- critical vulnerability | Ivanti releases patch for Endpoint Manager (EPM), fixing 6 critical items
- critical vulnerability | Veeam reports critical flaw in their Backup Enterprise Manager
- critical vulnerability | Zabbix network monitoring tool vulnerable to critical SQL injection
Incidents
- critical vulnerability | Association of California School Administrators reports cyberattack, 55k impacted
- data breach | AbbVie reports data breach exposing customer data
- data breach | Western Sydney University reports data breach impacting students and staff
- data breach | Bangladesh National Telecommunication Monitoring Centre reports data theft using police credentials
- data breach | Patriot Mobile mobile carrier reports data breach
- data breach | Philippine National Police shuts down systems after cyber attack
- data breach | Lane Gorman Trubitt accounting firm reports data breach
- data breach | Trionfo Solutions LLC reports data breach
- data breach | Bank of America reports data breach of the Walmart pension plan participants
- data breach | Lewisham Council leaks data of 156 residents for almost a year
- data breach | Welsh Rugby Union supporters' club member data leaked through an unsecured AWS S3 bucket
- data breach | Australian investment firm XM group customer data of over 400k people possibly leaked
- data breach | Interactive Brokers reports data breach caused by compromised email
- data breach | Northeast Rehabilitation Hospital Network reports data breach
- data breach | Hackers claim theft of 70 Million records of prison inmates
- data breach | Shore Regional High School District in N.J. reports data breach exposing student data
- data breach | LA County Department of Mental Health reports data breach putting patient information at risk
- data breach | Community First Credit Union reports data breach
- data breach | OmniVision reports data breach after ransomware attack
- ransomware | Albany County is investigating cybersecurity breach
- ransomware | Justice department of South Africa hit by cyberattack
- ransomware | Singapore based Jumbo Group restaurants reports ransomware attack
- ransomware | Belgian mobility operator Mpact hit by ransomware
- ransomware | pcTattletale spyware site hacked, data and source leaked
- ransomware | Black Basta claims breach of Atlas Oil
- ransomware | LockBit gang claims attack and data theft from University of Siena
