Cenero LLC

Alerts!

We use this page to track on-going alerts -- security issues you should be aware of, system outages we have planned, etc.

Meltdown and Spectre Vulnerabilities

Date of Post: 2018-01-09

We are aware of the recent processor vulnerabilities known as Meltdown and Spectre.

We have compiled the list below of support bulletins we have received from each manufacturer in response to the identified vulnerabilities. The manufacturers have assured us that they are addressing any potential negative impacts as quickly as possible.

As we receive updates this list will be updated.

If you have any questions, please contact support@cenero.com.

Crestron Support Bulletin

Polycom Security Advisory

Biamp COV/LOV Documentation

H.323 'Cisco' Spam Calls Alert

Date of original post: 2015-04-01
Updated: New IP addresses added 2015-11-24

There has ben a recent flood of nuisance spam calls from a source system ID 'Cisco' plaguing vidoeconferenicing systems around the globe

This new type of attack is getting initiated from a special tool installed on cloud hosted servers, and is automated to scan a random list of IP addresses on the H.323 VC protocol.

The spam calls show clear and real source IP address, and use the standard network port and VC protocol, similar to any legitimate call, which makes it difficult for the VC system to identify and block it.

The main four video conferencing venders (Cisco, Polycom, Lifesize and Avaya) are aware about this issue and are investigating it. We will provide an update once we get any further information.

Meanwhile, you can take one or more of the below actions to avoid nuisance calls:

  • Deploy a Traversal server (Videoconference Firewall) on your network to protect your system
  • Configure your firewall to block the source IP addresses (if known) - Please see below
  • Disable the 'Auto Answer' option on your system when you don't need it
  • Enable 'Do Not Disturb' (if it is supported by your system) when you are not expecting any inbound call / additional participant joining a Multiway conference
Add these IP addresses to your Blacklist:

CSV List