State of (in)security - Week 44

published: Nov. 6, 2023

Take action: When you are handed huge amounts of data of individuals, you are handed huge responsibility. It's not easy to secure such a data set, so communicate risks and be pessimistic. Because we saw from the lastpass breach that if someone sees value in breaching your data, they will invest a lot of time and money.

Learn More

In the week between Oct. 30, 2023, midnight and Nov. 6, 2023, midnight we witnessed a total of:
  • 6 advisory/vulnerability events
  • 22 incident/data breach events

Week over Week comparison of week 44 vs week 44 is - terrifying:

We also shared 2 practical knowledge items
Total impacted individuals via the events of the week

There were a total of 815,824,025 impacted individuals across 8 incidents, with the largest breach being the The data of 815 million citizens of India for sale via breach of Covid19 data records incident exposing 815,000,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.

Cause breakdown of incidents
Cause Number of incidents
ransomware 9
third party breach 5
email account breach 2
database configuration error, exposed w/o password online 1
sql injection 1
Industry breakdown of incidents
Industry Number of incidents
Healthcare 4
IT/Software/Technology 4
Finance 4
Manufacturing 2
Government 2
Telecommunications 1
Consulting/Professional Services 1
Education 1
Retail 1
Aviation 1
Read the Event Details of the Week




State of (in)security - Week 44