Bitwarden surveyed 2,400 people in the US, UK, Australia, France, Germany, and Japan about password habits. Twenty-five percent of respondents globally reuse passwords across 11 to over 20 accounts, and 36 percent use personal information in their credentials publicly accessible on social media platforms and online forums. Most respondents use memory (53 percent) and handwriting (34 percent) for work account passwords.

According to the Cybersecurity and Infrastructure Security Agency (CISA), the US government and critical infrastructure entities were sent 1754 ransomware vulnerability notifications under the Ransomware Vulnerability Warning Pilot (RVWP) program in 2023, resulting in 852 vulnerable devices being secured or taken offline. The highest number of alerts were sent to government facilities (641), which encompasses a range of federal, state, and local government organizations, including schools and higher education facilities.

Security researchers at Sekoia have sinkholed a command and control server for a variant of the PlugX malware and observed in six months more than 2.5 million connections from unique IP addresses. Since last September, the sinkhole server received over 90,000 requests every day from infected hosts in more than 170 countries. Since September 2023, when the security researchers captured the unique IP address associated with the particular C2, it has logged over 2,495,297 unique IPs from 170 countries interacting with the sinkhole.

In a recent data breach, the BlackCat/ALPHV ransomware gang allegedly stole 6TB of sensitive patient data from UnitedHealth. In early March, BlackCat performed an exit scam after allegedly getting $22 million in ransom from UnitedHealth. At that time, one of the gang's affiliates, known as "Notchy," claimed that they had UnitedHealth data because they conducted the attack and that BlackCat cheated them of the ransom payment. The transaction was visible on the Bitcoin blockchain and confirmed by researchers to have reached a wallet used by BlackCat hackers.

Russia, Ukraine, China, and the US topped the list of countries with the most cybercriminal activity in an academic study on cybercrime, but Nigeria, Romania, and Brazil being among the top-ranked is considered surprising. A high World Cybercrime Index (WCI) score is typical for countries with high technology levels and state-sponsored threat actors that overlap with cybercriminal groups. Nigeria led the scams category, and Romania led data and identity theft.