State of (in)security - Week 32, 2024
Take action: The breach of the National Public teaches a great lesson of how data greed comes back to hurt you. Unless you have a lot of money for a lawsuit, limit your data collection and enforce stringent data deletion. And push your lawmakers to adopt GDPR or similar regulation protecting personal data.
Learn More
In the week between Aug. 5, 2024, midnight and Aug. 12, 2024, midnight we witnessed a total of:
- 15 advisory/vulnerability events
- 24 incident/data breach events
Week over Week comparison of week 32 2024 vs week 31 2024:
- Advisories and incidents have increased. Advisories are up from 6 in week 31 to 15 in week 32. Incidents are up from 15 in week 31 to 24 in week 32.
- If we disregard the National Public incident, the number of known impacted individuals has decreased - from just over 2.5 million in week 31 to 1.2 million in week 32. With the National Public incident the number jumps to 2.9 BILLION breached
We also shared 4 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 1,265,340 impacted individuals across 4 incidents (not counting National Public), with the largest breach being the Australian furniture retailer Early Settler reports data breach incident exposing 1,100,000 individuals and the National Public incident the number jumps to 2.9 BILLION breached. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Cause breakdown of incidents
| Cause | Number of incidents |
|---|---|
| Malware, Ransomware and Related Attacks | 7 |
| System Misconfiguration Exploits | 2 |
| Third Party Compromise | 2 |
| Unauthorized access | 2 |
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| Healthcare | 5 |
| Education | 3 |
| Government | 3 |
| Other | 3 |
| Telecommunications | 2 |
| Entertainment/Leisure | 1 |
| Insurance | 1 |
| Retail | 1 |
| Finance | 1 |
| Food and Beverage | 1 |
| IT/Software/Technology | 1 |
Read the Event Details of the Week
Knowledge
- active exploit | CISA warns of ongoing hacking of Cisco devices with weak password setup
- awareness | Oligo Security reports flaw affecting all browsers on Mac and Linux, dubbed "0.0.0.0 Day"
- active exploit | Progress WhatsUp Gold critical flaw actively attacked
- awareness | Windows drags it's feet on patching a downgrade that can revert a patched system to vulnerable version
Vulnerabilities
- critical vulnerability | Another XSS flaw reported in Roundcube Webmail
- data breach | Apache InLong project reports critical flaw in its TubeMQ component
- critical vulnerability | Calibre e-book fixes multple flaws, one critical
- critical vulnerability | Critical vulnerability in Apache OFBiz reported, expecting exploits
- critical vulnerability | Firefox 129 fixes 14 flaws, 11 high severity
- critical vulnerability | Google releases Android August patches, fixes at least one exploited flaw
- critical vulnerability | Google release update for Chrome, fixes multiple flaws
- critical vulnerability | Jenkins warns of critical flaw exposing servers to remote code execution
- critical vulnerability | JFrog Artifactory repository manager vulnerability allows cache poisoning attack
- critical vulnerability | Kibana patches critical arbitrary code execution flaw
- critical vulnerability | Microsoft reports multiple OpenVPN vulnerabilities that can be used to execute code
- critical vulnerability | Replace Cisco SPA300, SPA500 IP phones - critically vulnerable, no fixes
- critical vulnerability | Researchers report on "SinkClose" flaw in AMD CPUs enabling install of persistent malware
- critical vulnerability | Rockwell Automation ControlLogix 1756 devices are vulnerable to security bypass
- critical vulnerability | Samsung releases the August 2024 update for Galaxy devices, fixes critical issues
Incidents
- data breach | Gramercy Surgery Center data leaked after cyberattack
- data breach | National Public sued over apparent data breach, exposure of 2.9 billion people
- data breach | Phishing attack on Kerman Unified School district's email, phishing mails sent to students
- data breach | Netflix breach - shows and movies leak online
- data breach | easySim.global mobile provider reports data breach
- data breach | Australian furniture retailer Early Settler reports data breach
- data breach | Ohio State School Board Association reports cyberattack disrupting operations
- data breach | CSC ServiceWorks reports data breach after 2023 cyberattack
- data breach | Trump 2024 campaign reports security breach, data theft
- data breach | LS Networks telecom operator reports data breach
- data breach | Mysterious global small credit card charges from shopify-charge.com indicate stolen cards
- data breach | Illinois voter records leaked via unsecured databases
- data breach | Omaha National reports data breach caused by compromised email
- data breach | Dunn Bros. coffee locations hit by data breach caused by third party
- data breach | Home security/alarm company ADT reports data breach
- data breach | Calibrated Healthcare reports data breach exposing patient's data
- data breach | First Commonwealth Credit Union reports data reach exposing SSNs of 100k people
- disruption | McLaren Health Care Michigan hit by ransomware, computer and phone systems disrupted
- ransomware | City of Killeen hit by ransomware
- ransomware | Bayhealth Hospital compromised by Rhysida ransomware gang
- ransomware | The Grand Palais host of Olympic events among 40 museums in Paris hit by ransomware
- ransomware | Hunters International ransomware gang leaks data from Betances Health Center
- ransomware | Sumter County Sheriff's Office hit by ransomware
- ransomware | Philippine JG Summit Holdings Inc. supposedly hit by ransomware, data breached
