State of (in)security - Week 46, 2024
Take action: One more time - data greed is bad. Never store old data "just in case" because it will eventually leak or be hacked. Once you are breached, the stolen data will be reused and abused many times after the initial incident. It will hurt you time and again. Which makes investment in preventing breaches a reasonable effort.
Learn More
In the week between Nov. 11, 2024, midnight and Nov. 18, 2024, midnight we witnessed a total of:
- 14 advisory/vulnerability events
- 23 incident/data breach events
Week over Week comparison of week 46 2024 vs week 45 2024:
- Advisories are up from the previous week, incidents are down. Advisories are up from 13 in week 45, to 14 in week 46. Incidents are down from 25 in week 45 to 23 in week 46.
- The number of known impacted individuals is signifcantly up - from just over 3 million in week 45 to 122 million in week 46.
We also shared 1 practical knowledge items
Total impacted individuals via the events of the week
There were a total of 124,144,515 impacted individuals across 9 incidents, with the largest breach being the DemandScience (Pure Incubation) data aggregator leaks over data of over 120 million people incident exposing 122,000,000 individuals. Since not all incidents report a number of impacted individuals, the real number is definitely higher than that.
Cause breakdown of incidents
| Cause | Number of incidents |
|---|---|
| Malware, Ransomware and Related Attacks | 3 |
| Unauthorized access | 3 |
| Denial-of-Service Attacks | 1 |
| Software Vulnerability and SDLC Exploits | 1 |
| System Misconfiguration Exploits | 1 |
| Third Party Compromise | 1 |
Industry breakdown of incidents
| Industry | Number of incidents |
|---|---|
| Government | 4 |
| Finance | 3 |
| Consulting/Professional Services | 3 |
| IT/Software/Technology | 2 |
| Non-profit/Charity | 2 |
| Insurance | 2 |
| Construction | 1 |
| Telecommunications | 1 |
| Education | 1 |
| Hospitality/Events | 1 |
| Manufacturing | 1 |
| Pharmaceuticals | 1 |
| Retail | 1 |
Read the Event Details of the Week
Knowledge
Vulnerabilities
- critical vulnerability | Adobe releases security updates for multiple products, including Photoshop, Illustrator, and Commerce
- critical vulnerability | CISA reports additional flaws actively exploited in Palo Alto Networks' Expedition migration tool
- critical vulnerability | Claroty Team82 reports multiple vulnerabilities in OvrC Cloud, one critical
- critical vulnerability | Critical authentication bypass in Really Simple Security (Really Simple SSL) WordPress security plugin
- critical vulnerability | Critical flaw reported in Chartify WordPress Chart Plugin
- critical vulnerability | Critical flaw reported in end-of-life GeoVision devices, actively exploited by malware botnet
- critical vulnerability | Critical flaw reported in WPLMS Learning Management System for WordPress
- critical vulnerability | Critical RCE flaw reported in Palo Alto Networks Firewall Management interfaces
- critical vulnerability | Icinga monitoring software reports and patches critical flaw
- critical vulnerability | Ivanti releases security updates for Endpoint Manager, patching one critical, multiple high severity flaws
- critical vulnerability | Microsoft November 2024 update addresses 91 vulnerabilities, four zero-day flaws, two actively exploited
- critical vulnerability | Multiple critical vulnerabilities reported in Schneider Electric Modicon controllers
- critical vulnerability | Security flaws in Citrix Virtual Apps session recording component reported
- critical vulnerability | Significant security flaw discovered in PostgreSQL PL/Perl
Incidents
- data breach | Symetra reports data breach
- data breach | Set Forth debt releif administrator reports data breach exposing 1.5M people
- data breach | German Federal Statistical Office (Destatis) reports data breach
- data breach | AnnieMac Home Mortgage reports data breach, 171K customers impacted
- data breach | Michigan Otsego Public Schools report data breach from 2023
- data breach | RBN Insurance Services reports data breach exposing 10k
- data breach | Twitch platform fined by Turkey's Personal Data Protection Board for data breach
- data breach | Amazon reports MOVEit related employee data breach, a year and a half after the incident
- data breach | Irish financial company FDC Group reports data breach
- data breach | Alltech Consulting Services leaks data of 216k people
- data breach | DemandScience (Pure Incubation) data aggregator leaks over data of over 120 million people
- data breach | Mobile County Health Department reports cybersecurity incident, potential data breach
- data breach | Event management company ASM Global Parent, Inc. reports breach of legacy systems
- data breach | YMCA of Central Florida reports data breach affecting 12,000 people
- data breach | Familylinks reports cybersecurity incident, potential data breach
- data breach | Start-Rite reports data breach, exposing customer data
- data breach | Data breach reported affecting Philippines eGovPH government digital services platform
- ransomware | DDoS attack targets Israel's payment infrastructure
- ransomware | City of Sheboygan reports ransomware attack
- ransomware | Embargo ransomware gang claims breach of American Associated Pharmacies
- ransomware | English Construction Company reports ransomware attack, data breach
- ransomware | Ahold Delhaizе hit by cyberattack
- ransomware | T-Mobile confirms it was hacked during the US telecom attacks by Chinese hackers
