State of (in)security - Week 26, 2023
Take action: Security happens before you drop the egg basket. Everything you do after that should be about cleanup and learning how not to drop it the next time. Just don't try to create a theater performance of gluing the eggs or claiming that the eggs were in somebody else's basket. In practice, ignoring reported vulnerabilities for a year and sharing passwords is not negligent. It's criminal.
Learn More
In the week between June 26, 2023, midnight and July 3, 2023, midnight we witnessed a total of:
- 10 advisory/vulnerability events
- 31 incident/data breach events
We also shared 1 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 4,320,447 impacted individuals across 11 incidents, with the largest breach being the BlackCat gang suspected of hacking NHS trust with 2.5 million patients incident exposing 2,500,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| healthcare | 8 |
| finance, pension funds | 4 |
| education | 3 |
| government | 2 |
| insurance | 2 |
| manufacturing | 1 |
| retail | 1 |
| Telecom | 1 |
| consulting | 1 |
| transportation | 1 |
| energy, oil and gas | 1 |
| Information Technology | 1 |
| Legal | 1 |
Read the Event Details of the Week
Knowledge
Vulnerabilities
- critical vulnerability | Critical SQL Injection vulnerability the Gentoo Soko package
- critical vulnerability | Ultimate Member Plugin Unpatched Privilege Escalation Vulnerability is Exploited
- critical vulnerability | Grafana fixes critical flaws related to Azure AD
- critical vulnerability | MS Teams contains vector for sending malicious files. Microsoft claims it's fine
- critical vulnerability | Chrome 114 security update fixes 4 vulnerabilities
- critical vulnerability | Arcserve Unified Data Protection fixes authentication bypass flaw, exploit published
- critical vulnerability | Researchers publish 4 critical SAP Bugs
- ransomware | Medtronic reports Critical Vulnerability in Paceart Optima System
- critical vulnerability | FreeBSD Project patches Critical Vulnerability in FreeBSD Kerberos 5 implementation
- critical vulnerability | Critical Security Flaw in miniOrange Social Login Plugin for WordPress
Incidents
- data breach | Conner, Strong & Buckelew reports of data breach with 15064 exposed individuals
- data breach | Citi Trends reports Data Breach impacting Employees and Job Applicants
- data breach | Canadian Suncor Energy impacted by cyberattack and reflected at gas station operations
- data breach | Sweetwater school district reports breach compromising employee, student information
- data breach | Orrick reports Data Breach
- data breach | Teacher retirement fund TIAA impacted by MOVEit vulnerability
- data breach | Delaware Henrietta Johnson hospital reports data breach, exposes patients data
- data breach | Tennessee Consolidated Retirement System (TCRS) reports vendor data breach
- data breach | Department of Health and Human Services is victim of the MOVEit vulnerability data breach
- data breach | Precision Imaging Centers reports Data Breach exposing 31000 Patients
- data breach | Wilton Reassurance reports MOVEit related Data Breach
- data breach | Employee Privacy Breach lasting for 15 years reported by Metro Health System
- data breach | CalSTRS Retirement System reports MOVEit vulnerability related Data Breach
- data breach | Data collected by Android spyware "phone monitoring" app LetMeSpy is stolen and leaked
- data breach | Peters Township School District reporting data breach
- data breach | Sensitive Optus data leaked through the HWL Ebsworth cyberattack
- data breach | Desert Physicians Management reports Data Breach in several Healthcare Providers
- data breach | GeoSouthern Energy Corp reports Data Breach Leaked Over 21000 Employee SSNs
- data breach | Siemens Energy reports data breach related to MOVEit vulnerability exploit
- data breach | National Student Clearinghouse impacted by MOVEit vulnerability breach
- data breach | USAA reports Data breach of some members' personal information
- data breach | Activate Healthcare reports Data Breach exposing patient health data, SSNs
- data breach | US Patent and Trademark Office reports multi-year data leak
- data breach | Arizona AHCCCS reports of Medicaid members data breach
- ransomware | TSMC impacted byRansomware Attack, LockBit crime group demand $70 Million
- ransomware | BlackCat gang suspected of hacking NHS trust with 2.5 million patients
- ransomware | Atlanta Postal Credit Union report Ransomware and Data Breach Following
- ransomware | Brunswick marine products suffers cyberattach impacting orders and production
- ransomware | Lehigh Valley Health Network impacted by ransomware cyber attack
- ransomware | Dublin airport staff's information victim to the MOVEit vulnerability exploit
- ransomware | Econsult reports ransomware attack, compromising personal data
