Security Notice - Statement on the Shamoon Attacks Issue
- SA No:huawei-sn-20170114-01-shamoon
- Initial Release Date: 2017.01.14
- Last Release Date: 2017.01.14
Huawei noticed that Palo Alto posted a blog titled "Second Wave of Shamoon 2 Attacks Identified" on January 9, 2017. The blog mentioned that the Shamoon attack sample contains several usernames and passwords from official documentation related to Huawei virtual desktop infrastructure (VDI) solution (official name: FusionCloud Desktop Solution).
Huawei immediately launched an investigation and confirmed that the usernames and passwords mentioned in the blog came from the official documentation of Huawei VDI solution but not a security vulnerability in the solution itself. The official documentation explicitly states that the usernames and initial passwords are used only for deploying the system and requires users to change the initial passwords. Specifically, administrators of the VDI solutions are forced to change the passwords upon initial login.
2017-01-14 V1.0 FINAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.
To enjoy Huawei PSIRT services and obtain Huawei product vulnerability information, please visit http://www.huawei.com/en/psirt.
To report a security vulnerability in Huawei products and solutions, please send it to PSIRT@huawei.com. For details, please visit http://www.huawei.com/en/psirt/report-vulnerabilities.