Knowledge

State of (in)security - Week 4, 2025

Take action: A reminder to patch everything on Windows - including office. Too many products, too widely available. Hackers love them because single piece of code can attack everywhere. Patch. Your. Microsoft. Products.


Learn More

In the week between Jan. 20, 2025, midnight and Jan. 27, 2025, midnight we witnessed a total of:

  • 8 advisory/vulnerability events
  • 25 incident/data breach events

Week over Week comparison of week 4 2025 vs week 3 2025:

We also shared 1 practical knowledge items

Total impacted individuals via the events of the week

There were a total of 7,884,829 impacted individuals across 5 incidents, with the largest breach being the Georgian citizens' personal information leaked in exposed Elasticsearch database incident exposing 7,200,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Cause breakdown of incidents

CauseNumber of incidents
Malware, Ransomware and Related Attacks5
Third Party Compromise5
Unauthorized access3
Social Engineering and Phishing1
System Misconfiguration Exploits1

Industry breakdown of incidents

IndustryNumber of incidents
Education5
Retail3
Government3
Healthcare2
Consulting/Professional Services2
IT/Software/Technology2
Entertainment/Leisure2
Telecommunications1
Finance1
Insurance1
Manufacturing1
Military/Defense1
Construction1

 

Read the Event Details of the Week

Knowledge

Vulnerabilities

Incidents

State of (in)security - Week 4, 2025