State of (in)security - Week 35, 2024
Take action: Your customers should not be learning about your incident that affects them from the news. Be proactive and manage the narrative. And push for better data protection and regulation - push your lawmakers to adopt GDPR or similar regulation protecting personal data because data brokers are acting like it's the wild west with your data.
Learn More
In the week between Aug. 26, 2024, midnight and Sept. 2, 2024, midnight we witnessed a total of:
- 11 advisory/vulnerability events
- 27 incident/data breach events
Week over Week comparison of week 35 2024 vs week 34 2024:
- Advisories and incidents have increased. Advisories are down from 14 in week 34 to 11 in week 35. Incidents are up from 21 in week 34 to 27 in week 35.
- The number of known impacted individuals has increased massively - From 800,000 in week 34 to over 174 million n week 35.
We also shared 4 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 174,542,955 impacted individuals across 8 incidents, with the largest breach being the People Data Labs data broker leaks data of 170M individuals incident exposing 170,000,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Cause breakdown of incidents
| Cause | Number of incidents |
|---|---|
| Third Party Compromise | 5 |
| Malware, Ransomware and Related Attacks | 5 |
| Unauthorized access | 3 |
| Software Vulnerability and SDLC Exploits | 2 |
| System Misconfiguration Exploits | 2 |
| Human bad security behaviour | 1 |
| Social Engineering and Phishing | 1 |
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| Transport/Logistics | 4 |
| Finance | 3 |
| Government | 3 |
| IT/Software/Technology | 3 |
| Retail | 3 |
| Healthcare | 3 |
| Education | 2 |
| Insurance | 1 |
| Entertainment/Leisure | 1 |
| Construction | 1 |
| Non-profit/Charity | 1 |
| Other | 1 |
| Pharmaceuticals | 1 |
Read the Event Details of the Week
Knowledge
- active attack | Chinese cyber espionage group uses Cisco zero-day flaw to deploy malware
- active attack | CISA warns of active attacks on Apache OFBiz flaw CVE-2024-38856
- active attack | Cyber espionage group exploits WPS Office vulnerability
- awareness | Detailed process - how hackers exploit Atlassian CVE-2023-22527
Vulnerabilities
- critical vulnerability | ALBeast vulnerability exposes AWS Application Load Balancer Configuration
- critical vulnerability | Critical SQL injection vulnerabilities reported in Fortra FileCatalyst Workflow
- critical vulnerability | Critical vulnerability reported in WordPress Multilingual WPML Plugin
- critical vulnerability | Dell Alienware vulnerable to bypassing Secure Boot protections
- critical vulnerability | Google patches another Chrome actively exploited flaw, 10th this year
- critical vulnerability | Hitachi reports critical flaws in its MicroSCADA X SYS600, urges patching
- critical vulnerability | Monitoring software Centreon patches multiple SQL Injection flaws
- critical vulnerability | Rockwell Automation warns of flaws in ThinManager ThinServer, two critical
- critical vulnerability | SonicWall fixes critical improper access control flaw in its firewalls
- critical vulnerability | SQL injection flaw reported in dingfanzu CMS
- critical vulnerability | Versa Networks fixes actively exploited vulnerability in Director platform
Incidents
- critical vulnerability | Virtual floral arrangement platform Alice’s Table leaks data of 83k people
- data breach | Power Diary email system breached, causing phishing/spam emails to patients
- data breach | City of St. Helena reports cyberattack, data breach exposing almost 1,000 people
- data breach | Strive Medical reports data breach exposing patient data
- data breach | Northwoods League collegiate baseball league reports data breach affecting ticket buyers
- data breach | Communication Federal Credit Union reports data breach
- data breach | Barrie and Community Family Health Team reports data breach
- data breach | Minnesota Department of Human Services reports data breach
- data breach | Canadian property rental company Mainstreet Equity Corp. reports data breach
- data breach | Texas Dow Employees Credit Union reports MOVEit related breach 1.5 years after the incident
- data breach | Durex India leaks customer confidential data
- data breach | Malaysia rail operator Prasarana reports data breach
- data breach | Park'N Fly airport parking service data breach affects 1M customers
- data breach | Young Consulting reports data breach exposing data of nearly 1 Million Blue Shield of California
- data breach | South Carolina State University reports data breach, employees affected
- data breach | People Data Labs data broker leaks data of 170M individuals
- data breach | Japanese insurers report data leak of over 2 million customer records
- data breach | DICK's Sporting Goods reports data breach after cyberattack
- data breach | Luxembourg learning app reports cyberattack, possible data breach
- data breach | Mobile numbers of NHS staff leaked in third party data breach
- data breach | CBIZ retiree health plan reports data breach, exposes client data
- data breach | Crescent Community Health Center’s InFocus Pharmacy reports data breach
- ransomware | Port of Seattle seaport and airport management company hit with cyberattack, impacts operations
- ransomware | Singapore Esso discount programme customer card details exposed in ransomware attack
- ransomware | Australian community support service Meli reports cyber attack
- ransomware | Hunters International Ransomware Gang claims breach US Marshals Service, they deny
- ransomware | JAS Worldwide freight forwarder reports ransomware attack and tech distractions
