Thoughts about Best Cyber Monday VPN offers

We at Privacy Now 2.0 finds a lot of articles about Best Cyber Monday VPN deals.

Disclosure: BleepingComputer has partnered with this vendor to promote special offers and discounts to our visitors. If a visitor purchases a product through a link in this article, BleepingComputer.com will earn a commission.

Bleeping Computer

Our conclusion

Please remember that all those articles are paid for by the VPN providers. Why does providers have to pay to get attention? Because they are not “best”? Yest, because they are not best!

Our recommendation

We recommend mullvad.net a VPN provider!

Pennsylvania county pays 500K ransom to DoppelPaymer ransomware

Bleeping Computer

Delaware County, Pennsylvania has paid a $500,000 ransom after their systems were hit by the DoppelPaymer ransomware last weekend.

On Monday, Delaware County disclosed that they had taken portions of their computer network offline after discovering that their network was compromised.

The County of Delaware recently discovered a disruption to portions of its computer network. We commenced an immediate investigation that included taking certain systems offline and working with computer forensic specialists to determine the nature and scope of the event. We are working diligently to restore the functionality of our systems, the Delaware County alert stated.

The County stated that the Bureau of Elections and the County’s Emergency Services Department were not affected and are on a different network than the hacked systems.

Local media has stated that the ransomware operators had access to networks containing police reports, payroll, purchasing, and other databases. As part of the attack, the threat actors demanded a $500,000 ransom to receive a decryptor.

Sources said the county is in the process of paying the $500,000 ransom as it’s insured for such attacks, Philadelphia’s 6abc’s Action News reported.

Full article

Drupal issues emergency fix for critical bug with known exploits

Bleeping Computer

Drupal has released emergency security updates to address a critical vulnerability with known exploits that could allow for arbitrary PHP code execution on some CMS versions.

“According to the regular security release window schedule, November 25th would not typically be a core security window,” Drupal said.

“However, this release is necessary because there are known exploits for one of core’s dependencies and some configurations of Drupal are vulnerable.”

Right now, over 944,000 websites are using vulnerable Drupal versions out of a total of 1,120,941 according to official stats. “These statistics are incomplete; only Drupal websites using the Update Status module are included in the data,” Drupal says.

Drupal is also used by 2.5% of all websites with content management systems, making it the fourth most popular CMS on the Internet, after WordPress (63.8%), Shopify (5.1%), and Joomla (3.6%).

Full article

Personal data of 16 million Brazilian COVID-19 patients exposed online

ZDNet

Image: Stefan Schranz

The personal and health information of more than 16 million Brazilian COVID-19 patients has been leaked online after a hospital employee uploaded a spreadsheet with usernames, passwords, and access keys to sensitive government systems on GitHub this month.

Among the systems that had credentials exposed were E-SUS-VE and Sivep-Gripe, two government databases used to store data on COVID-19 patients.

E-SUS-VE was used for recording COVID-19 patients with mild symptoms, while Sivep-Gripe was used to keep track of hospitalized cases.

The two databases contained sensitive details such as patient names, addresses, ID information, but also healthcare records such as medical history and medication regimes.

The leak came to light after a GitHub user spotted the spreadsheet containing the passwords on the personal GitHub account of an employee of the Albert Einstein Hospital in the city of Sao Paolo.

The user later notified Brazilian newspaper Estadao, which analyzed the data and notified the hospital and the Brazilian Ministry of Health.

Full article

Security News This Week: The Secret Service Is Investigating 700 Cases of Covid Relief Fraud

WIRED

Photograph: Getty Images

America’s electoral crisis reached a new low this week, as Donald Trump fired Christopher Krebs, the widely respected director of the Cybersecurity and Infrastructure Security Agency. The reason? Krebs had dared point out, both through CISA and his personal Twitter account, that the election misinformation being spread by the president and his enablers was patently untrue. (This is also probably a good time to remember that Trump can still launch nuclear weapons any time he wants and no one can stop him.)

While Apple’s M1 chip has deservedly grabbed more attention this week, Microsoft is also moving deeper into the silicon mix. Its Pluton security processor will work as part of a system-on-chip for Intel, AMD, and Qualcomm hardware, adding a layer of Windows security and eliminating an increasingly popular avenue of attack for hackers. Elsewhere, ad-blocking company Ghostery is adding a layer of privacy to search, launching its own browser and search engine tool in the coming months that promise an ad-free, untracked existence online.

Cheaters never prosper, unless they’re playing Among Us. One security researcher demonstrated this week that the viral smash has a big ol’ pile of vulnerabilities that could let a hacker kill in-game players at will, walk through walls, and more. In a more serious lack of security, encrypted chat app Telegram still hasn’t done enough to quash an AI bot that generates nonconsensual deep fake porn on the platform.

Facebook, at least, managed to fix a bug that would have let hackers listen in to the other end of a Messenger call before the person picked up. And remember that there are simple steps you can take—and advice you can give—to keep your family safe online this holiday season.

And there’s more! Every Saturday we round up the security and privacy stories that we didn’t break or report on in depth but think you should know about. Click on the headlines to read them, and stay safe out there.

The Secret Service Is Looking Into Hundreds of Covid-19 Fraud Cases

Covid-19 scams have been around for as long as the novel coronavirus itself. Even ISIS has gotten in on the grift. But the degree to which fraud has allegedly permeated the federal government’s Paycheck Protection Program and the Unemployment Insurance Relief program is still staggering. The Secret Service is apparently investigating 700 cases related to that category of theft, and the Justice Department has already charged 80 people with attempting to scam $240 million from the PPP program.

Full article

Manchester United working with infosec experts to ‘minimize ongoing IT disruption’ caused by ‘cyber attack’

The Register

Manchester United is working with infosec pros to “minimize the ongoing IT disruption” that it says was caused by an assault on its tech systems.

The New York Stock Exchange listed football business confirmed the incident last night but didn’t clarify the technical nature of it, and refused to answer questions posed by The Register.

Full article

Joe Biden’s ‘Vote Joe’ website defaced by Turkish Hackers

Bleeping Computer

This week, the Vote Joe site set up by the Biden-Harris Presidential campaign had been hacked and defaced by a Turkish hacker called RootAyyildiz.

Based on the evidence and the archived snapshots of the site, it appears the breach and defacement had lasted for over 24 hours.

Vote Joe site defaced this week

Up until November 9th or so, days after the 2020 U.S. Presidential Election, the vote.joebiden.com site would redirect to iwillvote.com, according to the Internet Archive’s Wayback Machine.

However, this week the Vote Joe site had been taken over, defaced, and started showing a message in Turkish, put forth by the attackers.

Although the Vote Joe site has now been taken offline, BleepingComputer observed Google continues to cache a defaced copy at the time of writing.

Full article

Facebook Messenger bug allowed Android users to spy on each other

Bleeping Computer

Facebook fixed a critical flaw in the Facebook Messenger for Android messaging app that allowed callers to listen to other users’ surroundings without permission before the person on the other end picked up the call.

Facebook Messenger for Android has been installed on more than 1 billion Android devices according to the app’s official Play Store page.

Attackers could have exploited this bug by sending a special type of message known as SdpUpdate which would cause the call to connect to the callee’s device before it was answered.

If this message is sent to the callee device while it is ringing, it will cause it to start transmitting audio immediately, which could allow an attacker to monitor the callee’s surroundings, explains Natalie Silvanovich, a researcher part of Google’s Project Zero bug-hunting team.

Full article

Linux issues resolved in latest desktop release (2020.7)

Mullvad

The newest version of the Mullvad VPN app for desktop fixes a number of bugs experienced by Linux users.

What’s new

This release is also available for Windows and macOS but it only contains bug fixes for Linux.

Download the app

Download the Mullvad VPN app. If needed, we’ve got help guides for installation and usage.

Know of someone unable to access our website? Point them to Mullvad’s onion address on Tor or to Mullvad on GitHub.

Full article

Mozilla Thunderbird 78.5 Released with More OpenPGP Improvements

9to5Linux

Mozilla Thunderbird 78.5 has been released today as a new maintenance update to the latest 78 series of the open-source and free email client used by numerous GNU/Linux distributions.

Mozilla Thunderbird 78.5 is all about improving the best feature of the 78 series, OpenPGP support, which is now built into the application and enabled by default to let users send encrypted emails.

In this version, OpenPGP gains a new option that let users disable the attaching of the public key to a signed email, improved support for inline PGP messages, as well as a fix for the message security dialog to no longer display unverified keys as unavailable.

Mozilla Thunderbird 78.5 also improves the MailExtensions feature by implementing a new “compose_attachments” context menu item to the Menus API, which was made available on displayed messages. Moreover, the browser.tabs.create function will now wait for the “mail-delayed-startup-finished” event.

Full article