Subj : Backdoor installer gives hackers full control over courtroom devi
To   : All
From : TechnologyDaily
Date : Fri May 24 2024 19:15:05

Backdoor installer gives hackers full control over courtroom devices

Date:
Fri, 24 May 2024 18:00:27 +0000

Description:
An update for courtroom software carried a backdoor allowing hackers

FULL STORY
======================================================================

An update for software that records court proceedings was contaminated with 
malware , granting persistent access to still unknown threat actors. 

This is according to a new report from cybersecurity researchers Rapid7, who 
discovered and reported the corruption to the software makers. The 
infestation has since been cleared, but the effects of the supply chain 
attack are not yet fully known. 

The software in question is called JAVS Viewer 8. It is a part of the JAVS 
Suite 8, a suite of software products used by courtrooms to record, play 
back, and manage audio and video from court proceedings. According to its 
makers, Justice AV Solutions, more than 10,000 courtrooms across the US and 
elsewhere around the world, are using the software. No witnesses 

As reported by Rapid7, the javs.com website recently hosted an updated 
version of JAVS Viewer 8, which also carried a backdoor that allowed its 
creators persistent access to infected devices. The contaminated version is 
designated as 8.3.7, and was pulled from the site sometime before April 1, 
2024. 

Users who have version 8.3.7 of the JAVS Viewer executable installed are at 
high risk and should take immediate action, Rapid7 said in its report. This 
version contains a backdoored installer that allows attackers to gain full 
control of affected systems. 

According to Ars Technica , at least 38 endpoints were infected, and cleaning 
up the device takes a little effort. 

Following the findings, JAVS said it took steps to clean up the malware: We 
pulled all versions of Viewer 8.3.7 from the JAVS website, reset all 
passwords, and conducted a full internal audit of all JAVS systems, the 
company said in a statement. We confirmed all currently available files on 
the JAVS.com website are genuine and malware-free. We further verified that 
no JAVS Source code, certificates, systems, or other software releases were 
compromised in this incident. More from TechRadar Pro Most data breaches on 
enterprise attack the supply chain Here's a list of the best firewalls today 
These are the best endpoint protection tools right now



======================================================================
Link to news story:
https://www.techradar.com/pro/security/backdoor-installer-gives-hackers-full-c
ontrol-over-courtroom-devices


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet Technology News (1337:1/100)

.