Internal Chats of a Conti Ransomware Group Exposed

0
[ad_1]
Internal Discussions Ransomware

RaaS (Ransomware-as-a-service) is actively strengthening the ransomware attacks, but understanding their operations is restricted by illegality. 

That’s why ransomware attacks have surged in scale and complexity over the past decade, driven by RaaS models like Conti (formerly Ryuk).

However, the Conti RaaS (Ransomware-as-a-service) operator’s recent chat leak provides valuable insights into their inner workings.

The following cybersecurity researchers from their respective universities recently analyzed the leaked internal discussions of a large Ransomware-as-a-Service model, Conti ransomware with ML (Machine Learning):-

  • Estelle Ruellan (University of Montreal)
  • Masarah Paquet-Clouston (University of Montreal)
  • Sebastian Garcia (Czech Technical University)

Ransomware devastates enterprises by locking devices or encrypting files for extortion, making it a significant IT threat studied for prevention and detection.

Over the past decade, ransomware has transformed. Initially, small-scale attacks were common, but now, attackers compromise advanced systems for higher profits through varied extortion tactics.

Internal Discussions Conti Ransomware

The research used chat files from TheParmak GitHub, offering open-source access to Conti chats translated into English via Google and DeepL. 

These logs span from June 21, 2020, to March 2, 2022, totaling 168,711 chats involving 346 actors, with each log including the following data in JSON format:-

  • Date
  • Sender
  • Receiver
  • Message

To identify Conti members’ discussion topics, researchers employed Latent Dirichlet Allocation (LDA), a topic modeling method commonly used in NLP to extract latent topics from document corpora, offering explicit document representations and applying them across fields like:-

  • Cybersecurity
  • Medicine
  • Political science

Security analysts applied Natural Language Processing (NLP) to cleanse the chats, a subfield of AI teaching machines to understand and extract meaning from human language using algorithms and grammatical rules.

Types of topics covered are as follows:-

  • Business topic
  • Technical topic
  • Internal tasking topic
  • Management topic
  • Malware topics
Roles of key members and their topic distribution (Source – Arxiv)

The Conti RaaS operator, a major player, might be an exception in its organization. The structure of RaaS operators could relate to their size, scope, success, and geographical locations. 

Besides this, future research should explore other cybercrime organizations for structural insights.

Using Conti chat leaks, the experts employed machine learning analysis that reveals cybercrime organizations mirror businesses with diverse discussions, confirming the significance of non-tech talks and managerial styles.

Keep informed about the latest Cyber Security News by following us on Google NewsLinkedinTwitter, and Facebook.


[ad_2]
Source link

Samsung accidentally releases One UI 6.0 Beta 3 for Galaxy S23

0
[ad_1]

Samsung recently rolled out a new One UI 6.0 beta update for the Galaxy S23 series. However, it turned out to be an accidental release. The company has already pulled back the rollout. It has also urged users who have installed the update to roll back to the previous version.

The latest One UI 6.0 beta build came with the build version ZWI4. It rolled out to a few Galaxy S23 users in Europe (Germany and the UK). The “I” in the second to last position revealed it was a build developed in September (“I” is the ninth letter in the English alphabet, and September is the ninth month of the year). Since the previous beta release (Beta 2) had the build number “ZWHO,” this appeared to be the third beta update for the Galaxy S23 series.

However, there was no official announcement from Samsung. Moreover, the update rolled out just a week after Beta 2, and the first beta in the UK. This hinted at it being a hotfix update for the previous release. Samsung did push a hotfix update for the original beta build as well. The OTA (over the air) download size of the latest release was also relatively small (just over 1GB for the Galaxy S23+), further suggesting a hotfix update.

Unfortunately, Samsung’s changelog offered nothing to settle this confusion. Screenshots shared online showed a few changes over Beta 2. However, the limited rollout and the lack of communication from the Korean firm cast doubts over it being the third One UI 6.0 beta. We were waiting for the company to confirm this rollout, but we heard something completely unexpected. A community moderator confirmed that it was an accidental release.

The latest One UI 6.0 beta update for the Galaxy S23 was an accidental release

“The version you have was released to users earlier than planned,” the moderator in charge of beta updates in Germany told a Galaxy S23 user who enquired about this update [machine translated from German]. “A rollback from [the] ZWI4 version on Smart Switch is about to be rolled out and I would request you to do this so that there are no complications with further updates in the future,” they added.

The moderator noted that this prematurely released beta build was on Samsung’s servers for a “very short” period of time. However, some users managed to download it before the company pulled the update back. Hopefully, it won’t be long before Samsung officially rolls out a new beta update for the Galaxy S23 series. It recently opened the One UI 6.0 beta program for the Galaxy A54, with the Galaxy S22 series expected to be the next in the pipeline.


[ad_2]
Source link

China is using AI photos to mislead American voters

0
[ad_1]

Microsoft analysts reported that China uses AI-generated content to trick American voters ahead of the 2024 election. The tech company also says Chinese agents are getting better at doing this.

Concerns about election safety are arising as we get closer to the US 2024 presidential election. Back in 2016, Russia was accused of meddling in the election. Now, Chinese agents are reportedly trying to influence American public opinion with AI photos. Ex-Google CEO Eric Schmidt already predicted that the upcoming US election could become a “mess” due to AI.

According to the Microsoft analysts report, China and North Korea currently employ AI-generated content to target voters. The scope of their operation is said to be greater than anything already seen.

“We have observed China-affiliated actors leveraging AI-generated visual media in a broad campaign that largely focuses on politically divisive topics, such as gun violence, and denigrating US political figures and symbols,” Clint Watts, the Microsoft Threat Analysis Center general manager, said.

China uses AI content to target US voters ahead of the 2024 election

The images spread by these agents mostly revolve around racial issues. For example, they reposted a Black Lives Matter poster showing bullet holes and a Black man surrendering.

Microsoft has warned the accounts that repost these photos. Chinese Communist Party agents mostly create these accounts and try to add fuel to the fire of racial issues in the United States. In one case, an account impersonating a conservative US voter reposted a Black Lives Matter poster complaining about racial discrimination.

Microsoft analysts warned that the AI-generated content by Chinese agents “has already drawn higher levels of engagement from authentic social media users.” Additionally, the new images are even more eye-catching, and US voters are reposting them despite knowing that AI generates them.

Analysts added that CCP-affiliated actors behind these accounts use fictitious or stolen identities to hide their affiliation with China. However, they’ve made some obvious mistakes, like posting in Mandarin and then switching to another language to conceal their main intention. The CCP-affiliated accounts also try to increase each other’s visibility by reposting content reciprocally.

As expected, a spokesperson for the Chinese Embassy in Washington rejected the allegations, saying, “Such remarks are full of prejudice and malicious speculation against China, which China firmly opposes.”


[ad_2]
Source link

Global Ticket Giant Hacked: Attackers Accessed Customers Data

0
[ad_1]

A Global Ticketing Giant company, See Tickets, recently reported a data breach that exposed the payment card information of over 300,000 customers.

See Tickets, owned by Vivendi Ticketing, revealed the latest breach in a complaint with Maine’s attorney general. 

The ticketing business said that in May, it discovered unusual activity on its e-commerce website

An anonymous cybersecurity company investigated and found that hackers “inserted multiple instances of malicious code into a number of its e-commerce checkout pages.”

Data Compromised in the Breach

Between February 28 and July 2, the hackers could access the names, addresses, and payment data of customers who made transactions on the See Tickets website. The compromised information includes:

  • Customer names
  • Addresses
  • Debit or credit card numbers in combination with security codes, access codes, passwords, or PINs.

According to the notification to impacted consumers, the data breach affected over 323,000 See Ticket users.

This attack reveals the prevalence of credit card skimming malware, in which criminals insert malicious code into a website’s checkout pages to steal users’ payment card information.

Card skimming is stealing credit card information or payment card data from online store consumers. Customers are unaware that their transaction data is being intercepted throughout the online purchase checkout procedure.

This issue represents the second known breach that See Tickets has experienced recently. See Tickets disclosed in October 2022 that hackers acquired consumers’ credit card credentials after hacked event checkouts for over two years.

According to the business, the skimming started on June 25, 2019; however, the code wasn’t found until April 2021. 

The malware wasn’t entirely removed from the See Tickets website until over a year later, in January 2022.

Global Ticketing Giant company See Tickets adds that its investigation into the breach was finished on July 21 and that the firm “moved quickly to notify you” — even though it took more than six weeks to contact affected consumers.

Customers who are alerted receive a free year of Kroll credit monitoring service and are urged to be watchful against identity theft and fraud.

Keep informed about the latest Cyber Security News by following us on Google NewsLinkedinTwitter, and Facebook.


[ad_2]
Source link

Spotify could let users listen to audiobooks for free

0
[ad_1]

Spotify has offered audiobooks since last year, and you can enjoy them if you’re willing to pay. However, what if you want to just try out some of the books that are on the platform before taking out your wallet? Well, according to The Wall Street Journal (via The Verge), Spotify could let you listen to audiobooks for free. There’s just a bit of a catch.

At the moment, Spotify doesn’t have the selection of audiobooks that Amazon has, but it’s still making gains in the market. If you’re interested in listening to audiobooks on Spotify, you can use them even if you don’t have a premium. Just go to the app/website, and search “audiobook” in the search bar. You should also see an audiobook tab on the home screen.

Spotify could let people listen to audiobooks for free

Spotify’s audiobook service operates just like other services. You’ll pay for each audiobook you listen to. The price will depend on the book, also. When you buy the book you want to listen to, it will be held in your library.

If you use Amazon’s audiobook platform called Audible, you’ll get some free books when you sign up. There’s no such perk with Spotify, but the company might provide a way for people to get some free listening in. The Wall Street Journal states that the company is working on a pilot program for a free trial for audiobooks.

This free trial could allow people to listen to up to 20 hours of audiobook content each month for free. That should be enough for two average-length books each month, which sounds pretty nice. From the sounds of it, it seems like you’ll have a 20-hour reservoir each month, and as you listen, it’ll be eaten away.

It also sounds like it won’t be tied to specific books. So, you might be able to spend your hours on any book that you like. If that’s the case, then you will be able to test drive different books to see if you want to buy them. This gives you more options when you’re looking for a book to buy.

At this point, we don’t know too much about this pilot program, but more information about it will come up as time goes on.


[ad_2]
Source link

The best computer mice you can buy

0
[ad_1]

It’s long been lauded as just an accessory to the computer experience; the computer mouse. Little do people know that the kind of mouse they have attached to their computer can define their work or play experience on their computer. Here’s a list of some of the best computer mice you can buy.

We’ll show you mice for general computer usage on this list. However, if you’re a gamer, then we have a list of the Best Gaming Mice, so you’ll want to take a look at that one. Also, these lists are constantly updated, so check back for new entries.

Best computer mice you can buy

This list will show you some useful, ergonomic, unique, and business-forward mice that you can use to add to your computer experience. These are targeted toward casual and professional computer users.

8Bitdo N30

8Bitdo N30

This is for you nostalgic nerds out there. The Super Nintendo defined a generation, and if you’re into the aesthetic of that system’s controller, then you’re sure to love this mouse. It sports the controller’s design with the light gray chassis, red buttons, and black accents.

On the side of the controller, there’s a D-pad on the side to help with navigation. This will help make up for the lack of the scrolling wheel in the middle. If you’re used to traditional mice, this mouse will take some getting used to. The click buttons are circular rather than being curved planes across the front of the mouse.

This mouse is wireless, and it works with both Windows and Mac computers. It’s a fun mouse to use, but it might not be the most ergonomic. So, if you’re looking for a more ergonomic mouse, then you might want to pass this one up.

8Bitdo N30 – Amazon

Welspo handheld Trackball Mouse

welspo Trackball Mouse

As stated at the beginning of this article, there will be unique mice, and this is definitely under that category. Looking at this device, it doesn’t really look like a mouse; however, it is. You’ll carry this mouse as you would a laser pointer and control your computer in that way.

To move the cursor, you’ll use the blue trackball on the top. Right under the trackball, you’ll have your left and right mouse buttons with the scrolling wheel in between them.

The reason why this mouse is like this is for ergonomic purposes. It allows you to have your hand in a more natural position rather than resting flat on a table. You’ll be able to use it just like any other mouse for a longer amount of time.

Welspo handheld Trackball Mouse – Amazon

Microsoft ARC Mouse

If you’re looking for a mouse with a minimalist design, then you might want to try out the Microsoft Arc mouse. This is as simple as a mouse can get with its simple unibody design. The body is relatively thin with a notable arc to it, giving it its name.

This mouse is for people who want a simple mouse that doesn’t take up much space on the desk. It’s small enough to fit pretty much any setup. Also, when you need to store it, the Arc mouse can go flat. This means that you can pack it away much easier.

This is a Microsoft mouse, so you know that it works perfectly for Windows computers. However, you can still use this mouse on Mac computers and on Chromebooks.

Microsoft Arc Mouse – Amazon

Hippus M2WB-LC HandShoe Mouse

Hippus M2WB LC

This definitely doesn’t look like your typical mouse. Rather, the Hippus M2WB is a mouse that prioritizes ergonomics. The mouse is like a bed that your hand rests upon. It’s wave-shaped, so your hand will lay on the mouse in a natural way. It’s to help prevent your hands from sitting flat on the table or resting in an unnatural position.

This is a wired mouse that uses a USB 1.1 connector. You’ll plug it into your computer and immediately start using it. The rest of the mouse is pretty standard. In the front, you have your left and right clicker buttons with the scrolling wheel in the middle. The buttons are angled so that your fingers will rest comfortably on them.

This mouse is compatible with all versions of Windows, Mac OS 9 and X, Linux, and Unix. So, you’ll most likely be able to use this no matter what computer that you’re using.

Hippus M2WB-LC HandShoe Mouse – Amazon

DANCESOUL Mouse

DANCESOUL Mouse

This is definitely the most futuristic-looking mouse on the list with its almost robotic design. It has this metallic material to it with a unique segmented design. Adding to the futuristic design, there’s a blue LED in the middle of the mouse.

The DANCESOUL Mouse can both be used wired and wirelessly, which only adds to the utility. This mouse has a rechargeable battery, so you won’t have to worry about replacing the battery when it goes out. Also, with fast charging technology, you won’t be out of the game for too long when the battery does run out.

This mouse can run on pretty much any operating system you’d be using. It’s compatible with Windows, Mac OS, and recent game consoles, but it has a special adaptor that further expands its usability. One side of it has a USB type-A head and the other has a USB type-C head. This means that you’re able to use this with your Android devices as well.

DANCESOUL Mouse- Amazon

Lekvey Ergonomic Mouse

Lekvey Ergonomic Mouse

This is a mouse with a unique almost arrowhead shape. It’s shaped like this for the sake of ergonomics. When you use the mouse, your hand will rest on the mouse in a natural sideways position, eliminating strain when using it for long periods of time. It will take some getting used to if you’re used to traditional mice. However, it’s a worthy upgrade if you have wrist pains.

On the thumb side of the mouse, you have a backward and forward button to help you navigate easier. On the other side, of course, you have your typical clicking buttons with the scrolling wheel in the middle. At the top of the mouse, there’s a DPI button to help adjust the speed of the cursor.

The Lekvey Ergonomic Mouse has a rechargeable battery that can last you a long time on a single charge. Speaking of use, you can use this mouse on a wide range of Windows and Linux devices, but it’s not compatible with Mac OS products.

Lekvey Ergonomic Mouse – Amazon

DeLUX Wireless Ergonomic Mouse

DeLUX Wireless Ergonomic Mouse

This is a mouse that prioritizes ergonomics, and that lends to its unique shape. It’s a vertical mouse, so your hand will pretty much stand upright. Just like other ergonomic mice, this one keeps your hand in a more natural side-ways position.

Your thumb will sit in a little slot on the side of the mouse with a button above and below it. These are the forward and backward buttons that will help you navigate easier. On the other side, you’ll see the typical clicker buttons with the scrolling wheel in the middle. On the bottom of the mouse, there’s a palm rest that will keep your palm from scraping against the mouse pad.

This is also the kind of mouse that you’d want if you want to keep quiet when you’re using it. The mouse buttons are much quieter than with other mice. So, you won’t have to worry if you’re working in a quiet location.

DeLUX Wireless Ergonomic Mouse – Amazon

Logitech Pebble i345

Logitech Pebble i345

So, you have a smaller setup, and you need a mouse that won’t take up too much space. Well, the Logitech Pebble i345 is the mouse for you. It’s a very low-profile mouse that you’ll use when you need to save space. Say, you need to work at a crowded coffee shop or your desk is cluttered. This mouse is small and portable. You can actually fit it in your pocket.

This is a Bluetooth mouse, so you don’t need to worry about the USB attachment. You’re able to use it for your computer, and you’re also able to use it for your tablet or other mobile device.

It’s not the most ergonomic mouse, so you’ll want to keep that in mind. The main focus of the mouse is saving space, so if you’re alright with using a pebble-shaped mouse, then it’s the mouse for you.

Logitech Pebble i345 – Amazon


[ad_2]
Source link

Multiple ArubaOS Vulnerabilities – Attackers Execute Arbitrary Code

0
[ad_1]

Multiple vulnerabilities have been discovered in Aruba 9200 and 9000 Series Controllers and Gateways running ArubaOS. The vulnerabilities related to Buffer Overflow and Hardware Root of Trust bypass. Aruba has released a security advisory for addressing these vulnerabilities.

At the end of August, Aruba released patches for multiple vulnerabilities affecting Aruba Switches, which were related to Stored Cross-site Scripting (Stored XSS), Denial of Service (DoS), and Memory corruption.

CVE-2023-38484, CVE-2023-38485

These two vulnerabilities are related to Buffer Overflow that exists in the BIOS implementation of Aruba 9200 and 9000 Series Controllers and Gateways. These vulnerabilities can allow a threat actor to execute arbitrary code in the boot sequence. 

In addition to this, the threat actor can also gain access to sensitive information in the affected Aruba Series controllers and change them which leads to a complete system compromise. The severity for these vulnerabilities has been given as 8.0 (High).

CVE-2023-38486 – Hardware Root of Trust Bypass

This vulnerability exists in the secure boot implementation on the affected Aruba 9200 and 9000 Series Controllers and Gateways could allow a threat actor to bypass the security control that prohibits unsigned kernel images from executing.

Furthermore, the threat actor can also use this vulnerability to execute arbitrary runtime operating systems, including unverified and unsigned OS images. The severity of this vulnerability has been given as 7.7 (High).

Prerequisites for a Threat Actor & Workaround

In order to exploit these vulnerabilities, the threat actor must exploit other vulnerabilities and gain access to the root shell of the Local ArubaOS controller since these vulnerabilities require root shell access for exploitation.

As a workaround, Aruba has recommended its users restrict the CLI and web-based management interfaces to a dedicated layer 2 segment or by firewall policies at layer 3 and above.

“HPE Aruba Networking recommends that the CLI and web-based management interfaces be restricted to a dedicated layer 2 segment/VLAN and/or controlled by firewall policies at layer 3 and above.” reads the security advisory by Aruba.

For detailed information about these vulnerabilities, it is recommended to check the security advisory released by Aruba.

Affected ProductsAffected Software VersionsEnd-of-support products (Patches will not be released)Fixed in versions
9200 Series Mobility Controllers and SD-WAN Gateways9000 Series Mobility Controllers and SD-WAN GatewaysArubaOS 10.4.x.x: 10.4.0.1 and belowArubaOS 8.11.x.x: 8.11.1.0 and belowArubaOS 8.10.x.x: 8.10.0.6 and belowArubaOS 8.6.x.x: 8.6.0.21 and belowArubaOS 10.3.x.x: allArubaOS 8.9.x.x: allArubaOS 8.8.x.x: allArubaOS 8.7.x.x: allArubaOS 6.5.4.x: allSD-WAN 8.7.0.0-2.3.0.x: allSD-WAN 8.6.0.4-2.2.x.x: allArubaOS 10.4.x.x: 10.4.0.2 and aboveArubaOS 8.11.x.x: 8.11.1.1 and aboveArubaOS 8.10.x.x: 8.10.0.7 and aboveArubaOS 8.6.x.x: 8.6.0.22 and above

Users of these products are recommended to upgrade to the latest ArubaOS versions to fix these vulnerabilities and prevent them from getting exploited.

Keep informed about the latest Cyber Security News by following us on Google NewsLinkedinTwitter, and Facebook.


[ad_2]
Source link

Google’s Pixel Watch 2 will be waterproof

0
[ad_1]

Yesterday, Google put out a few teasers, to let us know what to expect at their October 4 launch in New York City. And today, the company put out another video. This time, showing the Pixel Watch 2 from every angle. And while we know the Pixel Watch 2 is coming, and was shown off in the video, we’re starting to see a few other details.

At the very start of the video, you can see on the backside of the watch “IP68” and also what looks to be “Pixel Watch 2”. Which does definitely confirm the name, though Google did also call it that in its post on X.

This means that the Pixel Watch 2 is going to be IP68, which is a big deal. That is going to let you wear it in the shower, take it to the beach or the pool and go swimming and much more. It’s a little surprising that the first Pixel Watch wasn’t waterproof, since other Fitbits have been for quite some time.

Google pre-announced the Pixel Watch 2

After giving us a sneak peak at the Pixel 8 series yesterday, now Google’s doing the same with the Pixel Watch 2. It’s a bit of an interesting move for Google. Whereas most companies want to keep leaks down and as a secret ahead of the launch, Google is doing the opposite. Though this isn’t new for them. They kinda started doing this a few years ago with the Pixel 5 and Pixel 4a 5G.

It’s interesting, because of the timing. We’re just days away from the iPhone event, which is going to be the most watched smartphone launch of the year. And it appears that Google wants to get some of that attention off of Apple. And in doing so, basically announced all of their products ahead of the October 4 event.


[ad_2]
Source link

iPhone 15 Pro Max expected to be 40% of iPhone sales this year

0
[ad_1]

The Pro Max model of every iPhone (and before that, the Plus) has always been the most popular model out of the lineup. But this year, it looks like it’s a much more popular model. As market intelligence company, TrendForce is expecting about 40% of iPhone sales to be the iPhone 15 Pro Max.

This is particularly surprising since there is going to be an iPhone 15 Plus, and the iPhone 15 Pro Max is seeing a price bump of at least $100. However, Apple is rumored to be moving the base storage up to 256GB, which makes the price increase a bit easier to swallow, since it is actually the same price as the 256GB iPhone 14 Pro Max.

TrendForce is expecting Apple to sell 80 million iPhone 15 units this year

This year, TrendForce is expecting Apple to sell about 80 million units of the iPhone 15 series. That’s up about 6% from the iPhone 14 series. Though part of that is because the iPhone 14 series was heavily constrained due to the supply chain. The firm is also expecting that the Pro models will continue to be more popular than the non-Pro models. With a 60/40 split between Pro and non-Pro iPhones.

If the iPhone 15 Pro Max does become the most popular model, and by a large model as TrendForce is expecting, that will be great news for Apple. You see, Apple’s average price of an iPhone sale has dropped quite a bit over the past couple of quarters. And this is because customers are buying the base storage models, and not opting to upgrade their storage as often. Raising the price on the iPhone 15 Pro Max and making it the most popular model, will do wonders for Apple.

The company is expected to announce a 2TB model for the iPhone 15 Pro and Pro Max this year too. Which is just bonkers on a smartphone.


[ad_2]
Source link

SSO Implementation Vulnerability In Cisco Broadworks

0
[ad_1]
Cisco Broadworks Flaw

A single sign-on (SSO) implementation flaw in the Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform might make it possible for a remote, unauthenticated attacker to forge credentials to access a vulnerable system.

This “Critical” severity vulnerability has a CVSS base score of 10.0 and is tracked as CVE-2023-20238.

Cisco has issued software upgrades to address this vulnerability. There are no workarounds that address this vulnerability.

Details of the Vulnerability

Cisco stated that the process used to validate SSO tokens causes this vulnerability. By logging into the application using fake credentials, an attacker might take advantage of this vulnerability.

“This vulnerability is due to the method used to validate SSO tokens. An attacker could exploit this vulnerability by authenticating to the application with forged credentials”, Cisco said in its Security Advisory.

If the vulnerability is successful, the attacker may be able to use the forged account to execute commands or commit toll fraud. Further, the attacker would be able to read sensitive data, change customer settings, or change settings for other users if that account is an Administrator account.

“If that account is an Administrator account, the attacker would have the ability to view confidential information, modify customer settings, or modify settings for other users,” Cisco said.

The attacker would require a legitimate user ID linked to an affected Cisco BroadWorks system to take advantage of this flaw.

Affected Products

If you are running a vulnerable release of Cisco BroadWorks and have enabled one of the following applications, you are vulnerable to this issue.

  • AuthenticationService
  • BWCallCenter
  • BWReceptionist
  • CustomMediaFilesRetrieval
  • ModeratorClientApp
  • PublicECLQuery
  • PublicReporting
  • UCAPI
  • Xsi-Actions
  • Xsi-Events
  • Xsi-MMTel
  • Xsi-VTR

Products Unaffected

  • BroadWorks Ansible Playbook
  • BroadWorks Database Server
  • BroadWorks Database Troubleshooting Server
  • BroadWorks Execution Server
  • BroadWorks Media Server
  • BroadWorks Messaging Server
  • BroadWorks Network Database Server
  • BroadWorks Network Function Manager
  • BroadWorks Network Server
  • BroadWorks Pre-Install Check
  • BroadWorks Profile Server
  • BroadWorks Service Control Function Server
  • BroadWorks Service License Report Tool
  • BroadWorks Sharing Server
  • BroadWorks Software Manager
  • BroadWorks Video Server
  • BroadWorks WebRTC Server

Fixes Available

Cisco has made free software upgrades available to fix this issue.

Customers are encouraged to upgrade to an applicable fixed software release as soon as feasible.

Keep informed about the latest Cyber Security News by following us on Google NewsLinkedinTwitter, and Facebook.


[ad_2]
Source link