State of (in)security - Week 43

published: Oct. 30, 2023

Take action: Track Repeat Incidents to establish trends of wrong behavior. One-off incidents can occur to anyone, but multiple similar incidents indicate deeper systemic issues. Monitoring the frequency and nature of incidents is crucial - especially for third-party providers. Don't be afraid to change a provider if they are not behaving properly. It costs much less than being impacted by their incidents.

Learn More

In the week between Oct. 23, 2023, midnight and Oct. 30, 2023, midnight we witnessed a total of:
  • 7 advisory/vulnerability events
  • 24 incident/data breach events

Week over Week comparison of week 43 vs week 42 is - sligtly better:

We also shared 3 practical knowledge items
Total impacted individuals via the events of the week

There were a total of 2,920,344 impacted individuals across 10 incidents, with the largest breach being the Redcliffe Labs apparently impacted by data leak, exposing 12 million records incident exposing 2,500,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Cause breakdown of incidents
Cause Number of incidents
ransomware 7
third party breach 4
database configuration error, exposed w/o password online 2
account breach 1
protocol design issue 1
human error 1
DB config error, exposed w/o password 1
email account breach 1
Industry breakdown of incidents
Industry Number of incidents
IT/Software/Technology 4
Finance 4
Healthcare 4
Education 3
Government 3
Telecommunications 2
Transport/Logistics 1
Energy 1
Insurance 1
Aviation 1


Read the Event Details of the Week




State of (in)security - Week 43