State of (in)security - Week 22, 2023
Take action: This week we learned of vulnerabilities in three trusted vendors that were exploited for months and will impact many customers and industries for the weeks and months to come. Even if the system is running as you expect it, consider audit trail and automated monitoring for weird behavior.
Learn More
In the week between May 29, 2023, midnight and June 5, 2023, midnight we witnessed a total of:
- 12 advisory/vulnerability events
- 30 incident/data breach events
We also shared 2 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 4,565,000 impacted individuals across 8 incidents, with the largest breach being the Enzo Biochem Data for 2.5M Patients Breached incident exposing 2,500,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| healthcare | 7 |
| government | 5 |
| education | 4 |
| retail, jewlery | 3 |
| cryptocurrency | 2 |
| retail, jewlery | 3 |
| Information Technology, document management, SaaS | 2 |
| finance, pension fund | 2 |
| sports | 1 |
| automotive | 1 |
| Legal | 1 |
Read the Event Details of the Week
Knowledge
- awareness | "Operation Triangulation" - Details of Sophisticated Attack on Apple iOS
- awareness | Swiss Cheese failure mode example - Google cloud database service critical vulnerability
Vulnerabilities
- critical vulnerability | XSS Flaw Exposes Wordpress Beautiful Cookie Consent Banner plugin to attack campaign
- critical vulnerability | Multiple High-Severity Vulnerabilities Patched in Splunk Enterprise
- critical vulnerability | Update - Barracuda critical Zero Day flaw was exploited live - take mitigating action immediately
- critical vulnerability | Critical Security Flaws Reported in Sonos One Speakers
- critical vulnerability | Hundreds of Gigabyte Motherboards Have a Backdoor Vulnerability
- critical vulnerability | Multiple Vulnerabilities reported in PrinterLogic Enterprise Software
- critical vulnerability | Critical WordPress Jetpack patched force-installed on 5 million sites - Patch your self-hosted Jetpack
- critical vulnerability | Zyxel Firewall Devices Exploited In the Wild
- critical vulnerability | Even Microsoft Advises you to Patch Your Mac - macOS Critical vulnerability confirmed
- critical vulnerability | Critical zero-day vulnerability in MOVEit file transfer solution exploited
- data breach | Moxa Patches multiple Vulnerabilities in MXsecurity That Could Be Exploited in OT Attack
- critical vulnerability | Windows iTunes Security Vulnerability
Incidents
- data breach | University of Rochester investigates data breach
- data breach | Dark Web Data Breach Exposes Half Million RaidForums Members
- data breach | JD Group advises customers of data breach
- data breach | Atomic Wallet Major Cybersecurity Breach
- data breach | Jimbos Protocol Suffers an Exploit due to lack of controls, losing $7.5 Million US
- data breach | Hillsborough election office cyberattack exposed 58,000 voters' information
- data breach | 500 Email Addresses Accidentally Leaked in the Email CC line
- data breach | Over 40000 jewlery customers data leaked
- data breach | Legal tech firm Casepoint investigates breach as hackers claim theft
- data breach | Toyota customers in Asia, Oceania exposed in second data leak due to setting error
- data breach | Swiss administration reports cyberattack
- data breach | UI Community HomeCare Reports Data Breach Affecting more than 60,000 individuals
- data breach | Data breach at UL Hospitals Group exposes patient info
- data breach | Clarke County Hospital Patients Affected by Cyberattack
- data breach | Dollar Bank reports Data Breach Impacting Bank Customers
- data breach | Automotive Retailer DB Config Error Leaks 1.2M Customer Records
- data breach | MedInform reports Data Breach Affecting Patients SSN
- data breach | Nova Scotian residents personal information stolen in an instance of MOVEit exploit
- data breach | Rhysida ransomware group claims attack on Island of Martinique
- data breach | Burton Snowboards reports data breach
- hacked server | Orbiter Finance Discord Server Hacked, Used to Promote Scam
- ransomware | NZ Managed Service IT supplier Lantech hit by cyberattack
- ransomware | Dutch Education Foundation OSG Hengelo victim of ransomware
- ransomware | Onix Group Reports Ransomware attack and Data Breach
- ransomware | University of Waterloo investigating ransomware attack
- ransomware | Idaho hospital diverting ambulances after cyberattack
- ransomware | Claimed power surges shut down Prince Edward Island government website
- ransomware | Enzo Biochem Data for 2.5M Patients Breached
- ransomware | BlackCat claims attack on legal-tech platform Casepoint
- ransomware | Akron-Summit County Public Library investigating ransomware
