Protenus’s annual Breach Barometer reported 1,161 breaches affecting 171 million patient records in 2023, up 187% compared to 2022. While the number of breaches increased 2%, actual incidents dropped 1% to 942. However, the actual number of breached records may be higher as many entities used vague markers in their reports or didn’t report to a central agency. Protenus criticized the lack of transparency, particularly regarding ransomware attacks.

Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese advanced persistent threat (APT) group exploited CVE-2025-22457, a previously unexploitable buffer overflow bug, to compromise devices running Ivanti Connect Secure (ICS) and