Security - Cactus ransomware

SudharshanK — Wed, 01 May 2024 19:20:07 GMT

Do we have any statement from Qlik that attests to their cloud systems being patched for the below issue?

https://www.cybersecuritydive.com/news/cactus-ransomware-qlik-sense-cves/714578/

Re: Security - Cactus ransomware

tober — Fri, 03 May 2024 11:39:53 GMT

Hello,

Only certain versions of Qlik Sense Enterprise for Windows was impacted. Qlik Cloud was not impacted.

See below quotes, extracted from the following article detailing the concern: Qlik Sense Enterprise for Windows - New Security Patches Available Now

This issue only impacts Qlik Sense Enterprise for Windows. Other Qlik products including Qlik Cloud and QlikView are NOT impacted.

All versions of Qlik Sense Enterprise for Windows prior to and including these releases are impacted:
May 2023 Patch 3
February 2023 Patch 7
November 2022 Patch 10
August 2022 Patch 12

This link also gives more details: Critical Security fixes for Qlik Sense Enterprise for Windows (CVE-2023-48365)

All versions of Qlik Sense Enterprise for Windows prior to and including these releases are impacted:
August 2023 Patch 1
May 2023 Patch 5
February 2023 Patch 9
November 2022 Patch 11
August 2022 Patch 13
May 2022 Patch 15
February 2022 Patch 14
November 2021 Patch 16

The recommend plan of action for users running any of the above, or earlier, Qlik Sense Enterprise for Windows versions, is to perform an upgrade as soon as possible. Below are some specific patches with fixes. Newer versions are good to go as well.

November 2023 IR
August 2023 Patch 2
May 2023 Patch 6
February 2023 Patch 10
November 2022 Patch 12
August 2022 Patch 14
May 2022 Patch 16
February 2022 Patch 15
November 2021 Patch 17

topic Re: Security - Cactus ransomware in Management & Governance

Security - Cactus ransomware

Re: Security - Cactus ransomware