State of (in)security - Week 3, 2024

published: Jan. 22, 2024

Take action: Emphasize the importance of disabling old accounts and enforcing Multi-Factor Authentication (MFA) on all accounts to prevent unauthorized access.


Learn More

In the week between Jan. 15, 2024, midnight and Jan. 22, 2024, midnight we witnessed a total of:
  • 10 advisory/vulnerability events
  • 27 incident/data breach events

Week over Week comparison of week 2 2024 vs week 3 2024 is: getting better.

We also shared 5 practical knowledge items
Total impacted individuals via the events of the week

There were a total of 643,200 impacted individuals across 5 incidents, with the largest breach being the GEICO data apparently breached, data sold on the dark web incident exposing 552,900 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Cause breakdown of incidents
Cause Number of incidents
ransomware 10
third party breach 3
compromised account 2
unpatched software vulnerability 1
email account breach 1
database configuration error, exposed w/o password online 1
DDoS attack 1
Industry breakdown of incidents
Industry Number of incidents
Healthcare 6
IT/Software/Technology 5
Education 3
Finance 3
Transport/Logistics 2
Retail 2
Insurance 1
Entertainment/Leisure 1
Military/Defense 1
Automotive 1
Food and Beverage 1

 

Read the Event Details of the Week

Knowledge

Vulnerabilities

Incidents

State of (in)security - Week 3, 2024