No word on how this backdoor was installed:

A software maker serving more than 10,000 courtrooms throughout the world hosted an application update containing a hidden backdoor that maintained persistent communication with a malicious website, researchers reported Thursday, in the latest episode of a supply-chain attack.

The software, known as the JAVS Viewer 8, is a component of the JAVS Suite 8, an application package courtrooms use to record, play back, and manage audio and video from proceedings. Its maker, Louisville, Kentucky-based Justice AV Solutions, says its products are used in more than 10,000 courtrooms throughout the US and 11 other countries. The company has been in business for 35 years.

It’s software used by courts; we can imagine all sort of actors who want to backdoor it.

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

Infostealers Prevalent in Retail Sector Cybercrime Trends

April 3, 2024 0 Comments 0 tags

The findings from Netskope also show a shift in the retail sector’s use of cloud applications

Read More

US Unveils $50M Program to Help Hospitals Patch Cybersecurity Gaps

May 22, 2024 0 Comments 0 tags

The US government UPGRADE program aims to automate vulnerability management in hospital environments, ensuring minimum disruption to services

Read More

NIST National Vulnerability Database Disruption Sees CVE Enrichment on Hold

March 15, 2024 0 Comments 0 tags

Vulnerability data has stopped being added to the most widely used software vulnerability database for over a month, putting organizations at risk – and nobody knows why

Read More