How many advisory/vulnerability and incident/data breach events were reported between July 15, 2024, and July 22, 2024?

During the week between July 15, 2024, midnight and July 22, 2024, midnight, there were a total of 8 advisory/vulnerability events and 21 incident/data breach events.

How do the numbers of advisories and incidents in week 29 of 2024 compare to week 28 of 2024?

In week 29 of 2024, advisories decreased from 11 in week 28 to 8, while incidents increased from 19 in week 28 to 21.

What was the change in the number of known impacted individuals from week 28 to week 29 of 2024?

The number of known impacted individuals decreased from over 110 million in week 28 to over 12.8 million in week 29.

How many practical knowledge items were shared during the week?

Four practical knowledge items were shared during the week.

What were the main causes of the incidents reported during the week?

The main causes of the incidents were as follows: - Malware, Ransomware, and Related Attacks: 6 incidents - Software Vulnerability and SDLC Exploits: 2 incidents - Third Party Compromise: 2 incidents - Unauthorized access: 1 incident

Which industries were affected by the incidents during the week?

The affected industries and the number of incidents were: - IT/Software/Technology: 4 incidents - Education: 3 incidents - Government: 3 incidents - Healthcare: 3 incidents - Manufacturing: 2 incidents - Telecommunications: 2 incidents - Transport/Logistics: 1 incident - Consulting/Professional Services: 1 incident - Finance: 1 incident - Automotive: 1 incident

What are some of the active attacks and exploits reported during the week?

Some active attacks and exploits reported during the week include: - Active phishing campaign abusing CrowdStrike incident - CISA warning of GeoServer critical flaw under active attack - Security researchers warning of a critical Apache HugeGraph vulnerability being attacked - Trend Micro warning of hacker gang VoidBanshee exploiting Windows vulnerability CVE-2024-38112

What critical vulnerabilities were reported during the week?

Critical vulnerabilities reported during the week include: - Cisco critical flaw in Cisco Secure Email Gateway enabling arbitrary file write - Cisco critical vulnerability in Cisco Smart Software Manager On-Prem, enabling change of any user's password - Google Chrome security update, at least one critical flaw - HPE critical flaw in 3PAR service processor allowing authentication bypass - Li.Fi decentralized finance platform cyberattack and theft of $11M - Oracle massive July 2024 Critical Patch Update - SolarWinds critical flaws in Access Rights Manager - WP Time Capsule Backup and Staging plugin critical vulnerability

What incidents and data breaches were reported during the week?

Incidents and data breaches reported during the week include: - Cadre Holdings cybersecurity incident - Gastroenterology Associates of Central Florida data breach - Thousands of Life360 user data scraped via unsecured API and leaked - Washington State University cyberattack on Cougar Health Services Pharmacy - Family Dynamics Counseling Services data breach - Environmental Protection Authority of Victoria cyberattack and data breach - Fractal ID identity platform data breach - Malaysian National Cyber Security Agency investigation of U Mobile data breach claim - Hacker claim of Societe Francaise Du Radiotelephone telecom data breach - Hacker claim of Pinterest data breach, theft of 6 million records - Australian healthcare education Healthed data breach - BMW Hong Kong alleged data breach exposing 14k customers - Turkish Personal Data Protection Authority investigation of Uber technologies breach claim - Pueblo County school district 70 ransomware attack and data breach - MNGI Digestive Health data breach exposing 765k people - WazirX crypto exchange security breach, $230 million stolen - LA County Superior Court ransomware attack - Ransomware attack on Queensland accounting firm Gibbs Hurley Chartered Accountants - Philippine Department of Migrant Workers ransomware attack - Bassett Furniture ransomware attack disrupting operations - CrowdStrike agent update causing global disruption in Windows, impacting most industries

Knowledge

State of (in)security - Week 29, 2024

Q: How many individuals were impacted by incidents during the week?

There were a total of 12,800,733 impacted individuals across 9 incidents, with the largest breach being the Hacker claims Pinterest data breach, which exposed 6,000,000 individuals.

published: July 22, 2024

Take action: If you thought that Internet Explorer flaws are gone just because it's no longer visible in your Windows - you are wrong. All it takes is a phishing attachment to exploit the vulnerability in the still existing code of Internet Explorer. Be very careful of unexpected emails, even if they just contain PDF files. And make sure you patch your Windows!

Learn More

In the week between July 15, 2024, midnight and July 22, 2024, midnight we witnessed a total of:

8 advisory/vulnerability events
21 incident/data breach events

Week over Week comparison of week 29 2024 vs week 28 2024:

We also shared 4 practical knowledge items

Total impacted individuals via the events of the week

There were a total of 12,800,733 impacted individuals across 9 incidents, with the largest breach being the Hacker claims Pinterest data breach, theft of 6 million records incident exposing 6,000,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Cause breakdown of incidents

Cause	Number of incidents
Malware, Ransomware and Related Attacks	6
Software Vulnerability and SDLC Exploits	2
Third Party Compromise	2
Unauthorized access	1

Industry breakdown of incidents

Industry	Number of incidents
IT/Software/Technology	4
Education	3
Government	3
Healthcare	3
Manufacturing	2
Telecommunications	2
Transport/Logistics	1
Consulting/Professional Services	1
Finance	1
Automotive	1

Read the Event Details of the Week

Knowledge

active attack | Active phishing campaign abusing CrowdStrike incident
active attack | CISA warns of GeoServer critical flaw under active attack
active attack | Security researchers warn that a critical Apache HugeGraph vulnerability is attacked
active exploit | Trend Micro warns of hacker gang VoidBanshee exploiting Windows vulnerability CVE-2024-38112

Vulnerabilities

critical vulnerability | Cisco reports critical flaw in Cisco Secure Email Gateway enabling arbitrary file write
critical vulnerability | Cisco reports critical vulnerability Cisco Smart Software Manager On-Prem, enabling change of any user's password
critical vulnerability | Google releases Chrome security update, at least one critical flaw
critical vulnerability | HPE fixes critical flaw in 3PAR service processor allowing authentication bypass
critical vulnerability | Li.Fi decentralized finance platform reports cyberattack and theft of $11M
critical vulnerability | Oracle releases hundreds of patches in a massive July 2024 Critical Patch Update
critical vulnerability | SolarWinds patches critical flaws in Access Rights Manager
critical vulnerability | WP Time Capsule Backup and Staging plugin patches critical vulnerability

Incidents

data breach | Cadre Holdings reports cybersecurity incident
data breach | Gastroenterology Associates of Central Florida reports data breach
data breach | Thousands of Life360 user data scraped via unsecured API and leaked
data breach | Washington State University impacted by cyberattack on Cougar Health Services Pharmacy
data breach | Family Dynamics Counseling Services reports data breach
data breach | Environmental Protection Authority of Victoria reports cyberattack, data breach
data breach | Fractal ID identity platform reports data breach
data breach | Malasyan National Cyber Security Agency investigates claimed data breach of U Mobile
data breach | Hacker claims breach of Societe Francaise Du Radiotelephone telecom
data breach | Hacker claims Pinterest data breach, theft of 6 million records
data breach | Australian healthcare education Healthed reports data breach
data breach | BMW Hong Kong alleged data breach exposes 14k customers
data breach | Turkish Personal Data Protection Authority investigates breach claims at Uber technologies
data breach | Pueblo County school district 70 reports ransomware attack, data breach
data breach | MNGI Digestive Health reports data breach, exposing 765k people
data breach | WazirX reports security breach of crypto exchange, $230 million stolen
ransomware | LA County Superior Court hit by ransomware attack as the rest of the world was reeling from the CrowdStrike outage
ransomware | Ransomware attack claimed on Queensland accounting Ffrm Gibbs Hurley Chartered Accountants
ransomware | Philippine Department of Migrant Workers hit by ransomware attack
ransomware | Bassett Furniture hit by ransomware, disrupts operations
untested update | CrowdStrike agent update caused global disruption in Windows, impacting most industries

Read More
State of (in)security - Week 24, 2023
State of (in)security - Week 5, 2026
State of (in)security - Week 12, 2026
State of (in)security - Week 25, 2025
State of (in)security - Week 9, 2024