• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Jobs
  • Career
    • Cyber Security Training
    • Work from Home
    • Cyber Security Analyst
    • Remote Work – Six Ways to Keep Your Data Safe When Working Remotely
  • Field Guide
  • Newsletter Signup
  • Deals
  • News
AskCyberSecurity.com

AskCyberSecurity.com

Cyber Security News & Information

  • Home
  • Data Privacy
    • Gamers
    • Government Cyber Security
      • Legislation
      • Standards
        • What are the risks of computer security?
        • Medical Cyber Security
    • Social Media
  • Security
    • Data Breaches
    • Scams
    • Malware
  • Software
    • Apps
    • Web Browsers
  • Glossary
    • Cyber Security Acronyms
  • About Ask Cyber Security
    • Authors
    • Contact Us
  • VPN
    • How Do I Know If My VPN is Working?
    • Best Free VPN iPhone
    • Why Use a VPN?
    • NordVPN vs IPVanish
    • Private Internet Access Download
    • Best VPN for Streaming
      • TikTok VPN
    • VPN Porn
    • Computer Security Software – What You Really Need
  • Tutorials
  • ChatGPT
    • Does ChatGPT Save Data?
AskCyber Home » News » News » Cyber Security News 20 September 2019

Cyber Security News 20 September 2019

2019-09-20 by Michelle Dvorak

Cyber Security News 20 September 2019

Google Releases Critical Chrome Security Update – 16 Million Medical Scans Found Online with No Cyber Security Credit Cards Hacked from City Web Portals

Google Releases Critical Chrome Security Update

An update to Chrome web browser this week patches a critical cyber security vulnerability. An update to Chrome’s stable channel for Windows, Mac, and Linux makes the current version 77.0.3865.90 for the desktop version of Chrome.
The update began rolling out on 18 September 2019 to users worldwide this Wednesday. Once users have had time to patch the majority of machines, Google will release more details about the four vulnerabilities.

Chrome 77.0.3865.90 version patches security one critical and three high-risk security vulnerabilities. The critical cyber security vulnerability could allow hackers to remote control a machine.

Chrome Web Browser Vulnerabilities

  • Critical CVE-2019-13685: Use-after-free in UI. Reported by Khalil Zhani on 2019-09-05
  • High CVE-2019-13688: Use-after-free in media. Reported by Man Yue Mo of Semmle Security Research Team on 2019-08-20
  • High CVE-2019-13687: Use-after-free in media. Reported by Man Yue Mo of Semmle Security Research Team on 2019-08-28
  • High CVE-2019-13686: Use-after-free in offline pages. Reported by Brendon Tiszka on 2019-09-02

Chrome notifies users of a queued updates. For machines that are set to update automatically, Chrome will update to version 77.0.3865.90 as soon as the patch rolls out to them

Lion Air 737
Credit: Lion Air Fleet Photo

How to Update Chrome Manually

  1. Open Chrome web browser
  2. Tap the three dots in the upper right corner or the Chrome window
  3. Select Help from the menu
  4. Select About Google

16 Million Medical Scans Found Online with No Cyber Security

Medical images of millions of people were found online by cyber security researchers at ProPublica. The exposed records belong to five million patients in the U.S. and millions more worldwide. About sixteen million images were found all together. The highly personal information was accessible using commonly available software or a web browser.

Even more concerning is that the records also contained the identity of the patient as well as corresponding private information including birthdate, physician information, and medical procedures received

Password Manager
Save 15% on Keeper Password Manager today!

About 187 web servers used to store patient medical data were found by ProPublica and the German broadcaster Bayerischer Rundfunk to be unprotected by passwords or basic cyber security protocols.

The data and images are from medical imaging tests used in doctors’ offices, medical-imaging centers, and mobile X-ray services. The diagnostic images including X-rays, MRIs, CT scans as well as others. Anyone with an internet connection and basic computer skills could access the information.

Credit Cards Hacked from City Payment App

Over 20,000 payment card records were hacked from Click2Gov payment portals in eight U.S. cities spanning five states. For some cities, this is the second time they’ve been hacked in two years. The credit card numbers were already found for sale on sale the dark web.

Click2Gov was developed by CentralSquare Technologies, and gives municipalities the technology to let people to pay utility bills, parking tickets, and other municipal services online.
According to CentralSquare the vulnerability is patched.

Click2Gov Data Breaches History

This is a second round of cyber attacks that for Click2Gov.

In 2018, over 48 municipalities reported hackedClick2Gov payment portals. During that round of cyber attacks CentralSquare Technologies stated that only self-hosted software was hacked.
As of December 2018, over 300,000 Card Not Present payment cards were for sale on the dark web. In other words, hackers did not need to have the physical card to complete a transaction. Additional data breaches were reported through 2019 March.

In this second round of cyber attacks on Click2Gov payment portals, researchers found 20,000 more payment card records on the dark web. The credit cards are connected to eight cities in five states all of which are using Click2Gov. Six of the cities were part of the group that was hacked last year.

Filed Under: News

About Michelle Dvorak

Michelle writes about cyber security, data privacy focusing on social media privacy as well as how to protect your IoT devices. She has worked in internet technology for over 20 years and owns METRONY, LLC. Michelle earned a B.S. in Engineering from Rensselaer Polytechnic Institute. Michelle published a guide to Cyber Security for Business Travelers


LinkedInTwitterFacebook

Primary Sidebar

Subscribe to Our Free Newsletter

We Don't Share or Sell Your Info

Web Browsers

Where Are My Saved Passwords in Chrome?

Google Removes 70 Malicious Browser Add-ons from Chrome Web Store

Firefox 75 Reports Your Browser Settings to Mozilla

Categories

Cyber Security Field Guide

Computer Security While TravelingGet Our Cyber Security Field Guide - Available on Amazon!

Recent Posts

Security Marketing Manager – Remote

Sr. Associate, Cybersecurity Architect – Pfizer

Strategic Customer Success Manager – Cybersecurity – Opportunity for Working Remotely

Top 20 Passwords Leaked on Dark Web

ISU Cybersecurity Leader Job Opening

Cyber Security News

Top 20 Passwords Leaked on Dark Web

… [Read More...] about Top 20 Passwords Leaked on Dark Web

Apple Warns of Actively Exploited Zero-Day Flaw

… [Read More...] about Apple Warns of Actively Exploited Zero-Day Flaw

IRS Stops Facial Recognition System for Online Access

… [Read More...] about IRS Stops Facial Recognition System for Online Access

National Cybersecurity Alliance Announces Data Privacy Week

… [Read More...] about National Cybersecurity Alliance Announces Data Privacy Week

More Cyber Security News

Tags

amazon Android Apple bitcoin China chrome CISA credit card DarkSide DHS DOJ Equifax Europe Facebook facial recognition FBI Firefox FTC games GDPR Google Government hacker identity theft India iPhone Iran IRS LinkedIn Microsoft North Korea PayPal phishing phishing email ransomware REvil Russia smartphone T-Mobile TikTok tutorial VPN WhatsApp WiFi Windows

Government

CBP Looks to Access Airline Passenger Data

FTC Releases Cyber Threat Video Playlist

Malware Found on US Government Funded Phones

UK NCA Reaches Out to Youth to Deter Cybercrimes

More Posts from this Category

Footer

Menu

  • Home
  • About
  • Authors
  • Newsletter Signup
  • PRIVACY POLICY

Search

Why Use a VPN?

NordVPN vs IPVanish VPN Review

NAVIGATION

  • Data Breaches
  • Data Privacy
  • Gamers
  • Scams
  • Malware

MEMBER NJCCIC

New Jersey Cybersecurity & Communications Integration Cell

STAY CONNECTED

  • Facebook
  • Instagram
  • Pinterest
  • YouTube
  • Twitter
  • RSS

Copyright © 2023 · AskCyberSecurity.com · METRONY, LLC

Go to mobile version