Cyber Threat Intelligence Index: June 2023

Flashpoint’s monthly look at the cyber risk ecosystem affecting organizations around the world, including intelligence, news, data, and analysis about ransomware, vulnerabilities, data breaches, and insider threats.

July 13, 2023


Flashpoint’s latest ransomware infographic paints a sobering picture of the evolving threat landscape, with cybercriminals employing increasingly sophisticated tactics. Last month, our analysts observed a total of 475 ransomware attacks:

Flashpoint's monthly look at the state of ransomware.

Key takeaways for the state of ransomware

  • LockBit and Clop were the most prolific ransomware groups, being responsible for nearly 40 percent of June’s recorded ransomware attacks.
  • The United States experienced the most ransomware events, accounting for 47.5 percent of all of June’s ransomware attacks.
  • Internet Software & Services was the most targeted industry last month, followed by Construction & Engineering, and Professional Services.


1,828 new vulnerabilities were reported in June, with 395 of them being missed by the Common Vulnerabilities and Exposures (CVE) and National Vulnerability Database (NVD).

Flashpoint's monthly look at the state of vulnerability intelligence.

Key takeaways for the state of vulnerability intelligence

  • Approximately 35 percent of June’s disclosed vulnerabilities are rated high-to-critical in severity. If exploited, these issues could pose a significant security risk.
  • Over 53 percent of last month’s vulnerabilities are remotely exploitable. This means that if leveraged, threat actors can execute malicious code no matter where the device is located.
  • Vulnerability Management teams can potentially lessen workloads by nearly 87 percent by focusing on actionable, high severity vulnerabilities. This classification is given to vulnerabilities that are remotely exploitable, that have a public exploit, and a viable solution.

Data breaches

Studying breach events can help CISOs and security teams better understand the goals and motivations of threat actors. Our new infographic shows the latest developments in the data breach landscape. Last month, Flashpoint recorded 500 data breach events:

Flashpoint's monthly look at the state of data breach intelligence.

Key takeaways for the state of data breach intelligence

  • In June, threat actors stole a total of 14.9 million records.
  • Organizations in South Africa accounted for more than 63 percent of June’s recorded data breaches.
  • Unauthorized access, or hacking was the leading cause of data breaches in June, being responsible for over half of recorded data breach events.


Our latest infographic shows the latest malware trends: which types of malware threat actors favor, how they get access into a victim’s systems, and what cybercriminals do once they gain a foothold.

Key takeaways for the state of malware

  • Trojans were the most widely used malware type in June’s recorded cyberattacks.
  • In particular, the zbot malware family accounted for 35.10 percent of June’s top 5 indicators of compromise.
  • In June, the most favored MITRE ATT&CK tactic was Command and Control.

Get best-in-class intel

The following data is derived from the Flashpoint Ignite Platform and VulnDB. Sign up for a free trial today.

Begin your free trial today.