https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2143055#M29495 <P>Hello all,&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/14232">@diagonjope</a>&nbsp;&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/47012">@daveatkins</a>&nbsp;</P> <P>Thanks for posting here.</P> <P>As it is also explained on&nbsp;<A href="https://www.arcticwolf.com/resources/blog/cve-2023-41265-cve-2023-41266-cve-2023-48365/" target="_blank" rel="noopener">https://www.arcticwolf.com/resources/blog/cve-2023-41265-cve-2023-41266-cve-2023-48365/</A>&nbsp;these vulnerabilities were already mentioned some time ago, we strongly recommend to stay on the mentioned patches or newest ones, as newest ones will have those fixes plus more fixes included as patches are cumulative as per the release notes.</P> <P>Furthermore,&nbsp; I strongly recommend you to subscribe to our Support Blog so next time you do not miss such communications and other relevant ones about Qlik products.</P> <P><A href="https://community.qlik.com/t5/Support-Updates/bg-p/qlik-support-updates-blog" target="_blank" rel="noopener">https://community.qlik.com/t5/Support-Updates/bg-p/qlik-support-updates-blog</A></P> <P><A href="https://community.qlik.com/t5/Support-Updates/Qlik-Sense-Enterprise-for-Windows-New-Security-Patches-Available/ba-p/2108549" target="_blank" rel="noopener">https://community.qlik.com/t5/Support-Updates/Qlik-Sense-Enterprise-for-Windows-New-Security-Patches-Available/ba-p/2108549</A></P> <P><A href="https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows/tac-p/2120510" target="_blank" rel="noopener">https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows/tac-p/2120510</A></P> <P>Cheers,</P> <P>Albert</P> <P>&nbsp;</P> Thu, 30 Nov 2023 21:21:54 GMT Albert_Candelario 2023-11-30T21:21:54Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2142969#M29493 <P>Greetings!</P> <P>I just saw this article about a supposed ransomware security risk in QliK Sense and would like to receive instructions on what to do (if true):</P> <P><A href="https://www.arcticwolf.com/resources/blog/qlik-sense-exploited-in-cactus-ransomware-campaign/" target="_blank" rel="noopener">https://www.arcticwolf.com/resources/blog/qlik-sense-exploited-in-cactus-ransomware-campaign/</A></P> <P>Customers are asking us about it, but I can't find anything related to this issue in the community.&nbsp; Please advise and referer to <a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/14232">@diagonjope</a>&nbsp;in your note, so that I can get a notification.</P> <P>Cheers,</P> <P>++José</P> Thu, 30 Nov 2023 16:02:38 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2142969#M29493 diagonjope 2023-11-30T16:02:38Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2143008#M29494 <P>we patched our servers earlier this year; can someone from Qlik please link/list the appropriate patch levels here again?</P> Thu, 30 Nov 2023 17:42:51 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2143008#M29494 daveatkins 2023-11-30T17:42:51Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2143055#M29495 <P>Hello all,&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/14232">@diagonjope</a>&nbsp;&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/47012">@daveatkins</a>&nbsp;</P> <P>Thanks for posting here.</P> <P>As it is also explained on&nbsp;<A href="https://www.arcticwolf.com/resources/blog/cve-2023-41265-cve-2023-41266-cve-2023-48365/" target="_blank" rel="noopener">https://www.arcticwolf.com/resources/blog/cve-2023-41265-cve-2023-41266-cve-2023-48365/</A>&nbsp;these vulnerabilities were already mentioned some time ago, we strongly recommend to stay on the mentioned patches or newest ones, as newest ones will have those fixes plus more fixes included as patches are cumulative as per the release notes.</P> <P>Furthermore,&nbsp; I strongly recommend you to subscribe to our Support Blog so next time you do not miss such communications and other relevant ones about Qlik products.</P> <P><A href="https://community.qlik.com/t5/Support-Updates/bg-p/qlik-support-updates-blog" target="_blank" rel="noopener">https://community.qlik.com/t5/Support-Updates/bg-p/qlik-support-updates-blog</A></P> <P><A href="https://community.qlik.com/t5/Support-Updates/Qlik-Sense-Enterprise-for-Windows-New-Security-Patches-Available/ba-p/2108549" target="_blank" rel="noopener">https://community.qlik.com/t5/Support-Updates/Qlik-Sense-Enterprise-for-Windows-New-Security-Patches-Available/ba-p/2108549</A></P> <P><A href="https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows/tac-p/2120510" target="_blank" rel="noopener">https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows/tac-p/2120510</A></P> <P>Cheers,</P> <P>Albert</P> <P>&nbsp;</P> Thu, 30 Nov 2023 21:21:54 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2143055#M29495 Albert_Candelario 2023-11-30T21:21:54Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2143096#M29497 <P>Thank you,&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/16958">@Albert_Candelario</a>&nbsp;!</P> Fri, 01 Dec 2023 00:54:26 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2143096#M29497 diagonjope 2023-12-01T00:54:26Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2446456#M29498 <P>Is this version affected? It is not listed?</P> <P>13.82.4 20200717</P> <P>&nbsp;</P> Mon, 29 Apr 2024 15:59:58 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2446456#M29498 w7 2024-04-29T15:59:58Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447356#M29499 <P>Hello&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/297369">@w7</a>,</P> <P>Thanks for posting.</P> <P>Could you confirm the version by naming the "Month" "Year" and patch that you use?</P> <P>Thanks in advance.</P> <P>Cheers,</P> <P>Albert</P> Wed, 01 May 2024 11:27:35 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447356#M29499 Albert_Candelario 2024-05-01T11:27:35Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447371#M29500 <P><SPAN>Version = 13.82.4</SPAN></P> <P><SPAN>YYYYMMDD</SPAN></P> <P><SPAN>Year = 2020</SPAN></P> <P><SPAN>Month = 07</SPAN></P> <P>&nbsp;</P> Wed, 01 May 2024 12:19:34 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447371#M29500 w7 2024-05-01T12:19:34Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447388#M29501 <P><a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/297369">@w7</a>&nbsp;: "<SPAN>All prior versions of Qlik Sense Enterprise on Windows are affected, including releases such as May 2022, February 2022, and earlier."<BR /><BR /></SPAN></P> Wed, 01 May 2024 13:15:32 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447388#M29501 David_Friend 2024-05-01T13:15:32Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447742#M29502 <P>Thanks, please upgrade to version that does include the fix.</P> <P>Cheers,</P> <P>Albert</P> Thu, 02 May 2024 08:49:36 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2447742#M29502 Albert_Candelario 2024-05-02T08:49:36Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2448083#M29503 <P><a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/16958">@Albert_Candelario</a>&nbsp; We are using Qlik Cloud in our organization. Has the cactus ransomware issue affected the cloud version as well? If so, has there been any patches applied to prevent this issue?</P> Thu, 02 May 2024 18:53:11 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2448083#M29503 SudharshanK 2024-05-02T18:53:11Z https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2448084#M29504 <P><SPAN>From the article:</SPAN></P> <P><SPAN><BR />This issue only impacts Qlik Sense Enterprise for Windows. Other Qlik products including Qlik Cloud and QlikView are NOT impacted.</SPAN></P> Thu, 02 May 2024 18:56:11 GMT https://community.qlik.com/t5/Management-Governance/quot-Qlik-Sense-Exploited-in-Cactus-Ransomware-Campaign-quot-Is/m-p/2448084#M29504 David_Friend 2024-05-02T18:56:11Z