Backdoor installer gives hackers full control over courtroom devices

25.05.2024

An update for software that records court proceedings was contaminated with malware, granting persistent access to still unknown threat actors.

This is according to a new report from cybersecurity researchers Rapid7, who discovered and reported the corruption to the software makers. The infestation has since been cleared, but the effects of the supply chain attack are not yet fully known.

The software in question is called JAVS Viewer 8. It is a part of the JAVS Suite 8, a suite of software products used by courtrooms to record, play back, and manage audio and video from court proceedings. According to its makers, Justice AV Solutions, more than 10,000 courtrooms across the US and elsewhere around the world, are using the software.

No witnesses

As reported by Rapid7, the javs.com website recently hosted an updated version of JAVS Viewer 8, which also carried a backdoor that allowed its creators persistent access to infected devices. The contaminated version is designated as 8.3.7, and was pulled from the site sometime before April 1, 2024. 

“Users who have version 8.3.7 of the JAVS Viewer executable installed are at high risk and should take immediate action,” Rapid7 said in its report. “This version contains a backdoored installer that allows attackers to gain full control of affected systems.”

According to Ars Technica, at least 38 endpoints were infected, and cleaning up the device takes a little effort.

Following the findings, JAVS said it took steps to clean up the malware: “We pulled all versions of Viewer 8.3.7 from the JAVS website, reset all passwords, and conducted a full internal audit of all JAVS systems,” the company said in a statement. “We confirmed all currently available files on the JAVS.com website are genuine and malware-free. We further verified that no JAVS Source code, certificates, systems, or other software releases were compromised in this incident.”

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Leave a Reply

Your email address will not be published.

loader-image
Ashgabat
8:46 pm, Nov 9, 2024
temperature icon 14°C
пасмурно
Humidity 54 %
Pressure 1030 mb
Wind 2 mph
Wind Gust Wind Gust: 0 mph
Clouds Clouds: 100%
Visibility Visibility: 0 km
Sunrise Sunrise: 7:40 am
Sunset Sunset: 5:59 pm
Previous Story

DZ-ED х ARSI х DOWIK – ýene-de BKmedia show “Hereketde”

Next Story

AMD’s Strix Point CPUs for Copilot+ PCs aren’t even out, but their rumored names are already confusing everyone

Latest from Technology

Go toTop