We at Privacy Now 2.0 finds a lot of articles about Best Cyber Monday VPN deals.
Disclosure: BleepingComputer has partnered with this vendor to promote special offers and discounts to our visitors. If a visitor purchases a product through a link in this article, BleepingComputer.com will earn a commission.
Delaware County, Pennsylvania has paid a $500,000 ransom after their systems were hit by the DoppelPaymer ransomware last weekend.
On Monday, Delaware County disclosed that they had taken portions of their computer network offline after discovering that their network was compromised.
The County of Delaware recently discovered a disruption to portions of its computer network. We commenced an immediate investigation that included taking certain systems offline and working with computer forensic specialists to determine the nature and scope of the event. We are working diligently to restore the functionality of our systems, the Delaware County alert stated.
The County stated that the Bureau of Elections and the County’s Emergency Services Department were not affected and are on a different network than the hacked systems.
Local media has stated that the ransomware operators had access to networks containing police reports, payroll, purchasing, and other databases. As part of the attack, the threat actors demanded a $500,000 ransom to receive a decryptor.
Sources said the county is in the process of paying the $500,000 ransom as it’s insured for such attacks, Philadelphia’s 6abc’s Action News reported.
Drupal has released emergency security updates to address a critical vulnerability with known exploits that could allow for arbitrary PHP code execution on some CMS versions.
“According to the regular security release window schedule, November 25th would not typically be a core security window,” Drupal said.
“However, this release is necessary because there are known exploits for one of core’s dependencies and some configurations of Drupal are vulnerable.”
Right now, over 944,000 websites are using vulnerable Drupal versions out of a total of 1,120,941 according to official stats. “These statistics are incomplete; only Drupal websites using the Update Status module are included in the data,” Drupal says.
Drupal is also used by 2.5% of all websites with content management systems, making it the fourth most popular CMS on the Internet, after WordPress (63.8%), Shopify (5.1%), and Joomla (3.6%).
The personal and health information of more than 16 million Brazilian COVID-19 patients has been leaked online after a hospital employee uploaded a spreadsheet with usernames, passwords, and access keys to sensitive government systems on GitHub this month.
Among the systems that had credentials exposed were E-SUS-VE and Sivep-Gripe, two government databases used to store data on COVID-19 patients.
E-SUS-VE was used for recording COVID-19 patients with mild symptoms, while Sivep-Gripe was used to keep track of hospitalized cases.
The two databases contained sensitive details such as patient names, addresses, ID information, but also healthcare records such as medical history and medication regimes.
The leak came to light after a GitHub user spotted the spreadsheet containing the passwords on the personal GitHub account of an employee of the Albert Einstein Hospital in the city of Sao Paolo.
The user later notified Brazilian newspaper Estadao, which analyzed the data and notified the hospital and the Brazilian Ministry of Health.
America’s electoral crisis reached a new low this week, as Donald Trump fired Christopher Krebs, the widely respected director of the Cybersecurity and Infrastructure Security Agency. The reason? Krebs had dared point out, both through CISA and his personal Twitter account, that the election misinformation being spread by the president and his enablers was patently untrue. (This is also probably a good time to remember that Trump can still launch nuclear weapons any time he wants and no one can stop him.)
While Apple’s M1 chip has deservedly grabbed more attention this week, Microsoft is also moving deeper into the silicon mix. Its Pluton security processor will work as part of a system-on-chip for Intel, AMD, and Qualcomm hardware, adding a layer of Windows security and eliminating an increasingly popular avenue of attack for hackers. Elsewhere, ad-blocking company Ghostery is adding a layer of privacy to search, launching its own browser and search engine tool in the coming months that promise an ad-free, untracked existence online.
Cheaters never prosper, unless they’re playing Among Us. One security researcher demonstrated this week that the viral smash has a big ol’ pile of vulnerabilities that could let a hacker kill in-game players at will, walk through walls, and more. In a more serious lack of security, encrypted chat app Telegram still hasn’t done enough to quash an AI bot that generates nonconsensual deep fake porn on the platform.
Facebook, at least, managed to fix a bug that would have let hackers listen in to the other end of a Messenger call before the person picked up. And remember that there are simple steps you can take—and advice you can give—to keep your family safe online this holiday season.
And there’s more! Every Saturday we round up the security and privacy stories that we didn’t break or report on in depth but think you should know about. Click on the headlines to read them, and stay safe out there.
The Secret Service Is Looking Into Hundreds of Covid-19 Fraud Cases
Covid-19 scams have been around for as long as the novel coronavirus itself. Even ISIS has gotten in on the grift. But the degree to which fraud has allegedly permeated the federal government’s Paycheck Protection Program and the Unemployment Insurance Relief program is still staggering. The Secret Service is apparently investigating 700 cases related to that category of theft, and the Justice Department has already charged 80 people with attempting to scam $240 million from the PPP program.
Facebook fixed a critical flaw in the Facebook Messenger for Android messaging app that allowed callers to listen to other users’ surroundings without permission before the person on the other end picked up the call.
Facebook Messenger for Android has been installed on more than 1 billion Android devices according to the app’s official Play Store page.
Attackers could have exploited this bug by sending a special type of message known as SdpUpdate which would cause the call to connect to the callee’s device before it was answered.
If this message is sent to the callee device while it is ringing, it will cause it to start transmitting audio immediately, which could allow an attacker to monitor the callee’s surroundings, explains Natalie Silvanovich, a researcher part of Google’s Project Zero bug-hunting team.
Mozilla Thunderbird 78.5 has been released today as a new maintenance update to the latest 78 series of the open-source and free email client used by numerous GNU/Linux distributions.
Mozilla Thunderbird 78.5 is all about improving the best feature of the 78 series, OpenPGP support, which is now built into the application and enabled by default to let users send encrypted emails.
In this version, OpenPGP gains a new option that let users disable the attaching of the public key to a signed email, improved support for inline PGP messages, as well as a fix for the message security dialog to no longer display unverified keys as unavailable.
Mozilla Thunderbird 78.5 also improves the MailExtensions feature by implementing a new “compose_attachments” context menu item to the Menus API, which was made available on displayed messages. Moreover, the browser.tabs.create function will now wait for the “mail-delayed-startup-finished” event.