State of (in)security - Week 30, 2023

published: July 31, 2023

Take action: Custom and proprietary cryptography is always a terrible idea. No matter how good you think you are at cryptography math, you are still one person and can make mistakes, or be pressured into designing something that's intentionally less secure. Always use well known and publicly reviewed cryptography.


Learn More

In the week between July 24, 2023, midnight and July 31, 2023, midnight we witnessed a total of:
  • 11 advisory/vulnerability events
  • 29 incident/data breach events

The trend is worsening, with increas in vulnerability events and incidents compared to the previous week.

We also shared 2 practical knowledge items
Total impacted individuals via the events of the week

There were a total of 8,911,075 impacted individuals across 7 incidents, with the largest breach being the US govt contractor Maximus impacted by MOVEit vulnerability, expose 8,000,000 individuals incident exposing 8,000,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Industry breakdown of incidents
Industry Number of incidents
healthcare 8
education 5
finance 5
insurance 3
entertainment 2
government 2
military 1
energy, oil and gas 1
legal 1
consulting 1
Read the Event Details of the Week

Knowledge and Cyber Awareness

Vulnerabilities

Incidents

State of (in)security - Week 30, 2023