Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
schneierBruce SchneierSCHNEIER:982CE5ECEE06E919B9176139C9BF1B67
HistoryMay 30, 2024 - 11:04 a.m.

Supply Chain Attack against Courtroom Software

2024-05-3011:04:43
Bruce Schneier
www.schneier.com
4
supply chain
courtroom software
backdoor
javs viewer 8
justice av solutions

7.2 High

AI Score

Confidence

Low

JSON

No word on how this backdoor was installed:

> A software maker serving more than 10,000 courtrooms throughout the world hosted an application update containing a hidden backdoor that maintained persistent communication with a malicious website, researchers reported Thursday, in the latest episode of a supply-chain attack.
>
> The software, known as the JAVS Viewer 8, is a component of the JAVS Suite 8, an application package courtrooms use to record, play back, and manage audio and video from proceedings. Its maker, Louisville, Kentucky-based Justice AV Solutions, says its products are used in more than 10,000 courtrooms throughout the US and 11 other countries. The company has been in business for 35 years.

It's software used by courts; we can imagine all sort of actors who want to backdoor it.

7.2 High

AI Score

Confidence

Low

JSON