Knowledge

State of (in)security - Week 24, 2025

Take action: Attackers are hiding malicious AI commands in messages to people, hoping people will use AI to parse messages. Read your messages! Before an AI does that! Be very careful about messages with content that looks like AI prompt instructions to do something which makes little sense to you. If not needed, fully delete such messages and content and report it to your admins so it's possibly not loaded into the AI.


Learn More

In the week between June 9, 2025, midnight and June 16, 2025, midnight we witnessed a total of:

  • 10 advisory/vulnerability events
  • 21 incident/data breach events

Week over Week comparison of week 24 2025 vs week 23 2025:

We also shared 3 practical knowledge items


Total impacted individuals via the events of the week

There were a total of 3,355,942 impacted individuals across 5 incidents, with the largest breach being the Healthcare data leak exposes 8.8 M patient records incident exposing 2,700,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Cause breakdown of incidents

CauseNumber of incidents
Malware, Ransomware and Related Attacks9
Unauthorized access3
System Misconfiguration Exploits2
Third Party Compromise1

Industry breakdown of incidents

IndustryNumber of incidents
IT/Software/Technology4
Government4
Consulting/Professional Services3
Healthcare3
Insurance3
Transport/Logistics1
Media1
Retail1
Aviation1

Read the Event Details of the Week

Knowledge

Vulnerabilities

Incidents

State of (in)security - Week 24, 2025