MobileIron Remote Code Execution Vulnerability (CVE-2020-15505):
APT nation state groups and cyber criminals are attacking the networks of UK organisations by exploiting MobileIron remote code execution vulnerability CVE-2020-15505. This critical vulnerability affects MobileIron Core and Connector products and could allow a remote attacker to execute arbitrary code on a system. The MobileIron website lists the following versions as affected:
The Cybersecurity and Infrastructure Agency (CISA) in the US has also noted that APTs are exploiting this vulnerability in combination with the Netlogon/Zerologon vulnerability CVE-2020-1472 in a single intrusion.
BlackFriday Consumer Fraud & Scams:
New research states that 84% of consumers are willing to share their personal details during Black Friday sales in a bid to save money. The research shows that majority of shoppers are willing to send personal data such as email addresses and telephone numbers to take advantage of bargains they receive or see online. As many people have experienced additional financial strain due to the COVID-19 pandemic, the desire to save money has increased significantly and criminals are, therefore, more likely to exploit these desires. Further insights from the study show:
Covid-19 Patient Data Breach:
The personal and health information of more than 16 million Brazilian COVID-19 patients has been leaked online after a hospital employee uploaded a spreadsheet with usernames, passwords, and access keys to sensitive government systems on GitHub this month. From cancelled conferences to disrupted supply chains, not a corner of the global economy is immune to the spread of COVID-19.
Among the systems that had credentials exposed were E-SUS-VE and Sivep-Gripe, two government databases used to store data on COVID-19 patients. E-SUS-VE was used for recording COVID-19 patients with mild symptoms, while Sivep-Gripe was used to keep track of hospitalized cases. The two databases contained sensitive details such as patient names, addresses, ID information, but also healthcare records such as medical history and medication regimes.
The data leak came to light after a GitHub user spotted the spreadsheet containing the passwords on the personal GitHub account of an employee of the Albert Einstein Hospital in the city of Sao Paolo. The end user later notified Brazilian newspaper Estadao, which analyzed the data and notified the hospital and the Brazilian Ministry of Health.