Outdated on-premise Samsung MagicInfo 9 servers are the focus of attackers. Mirai botnets are currently attacking Samsung’s on-premise digital signage servers that haven’t been updated since August 2024. MagicInfo Cloud and VXT customers are not affected.
Mirai botnets are currently attacking local installations of Samsung MagicInfo servers, according to a recent security alert from Samsung and the Internet Storm Center. Only on-premise installations that haven’t been updated since August are affected.
MagicInfo Cloud and VXT users are not affected by this security breach. MagicInfo On-Prem users with versions V9 21.1050 and higher are also unaffected. To fix this vulnerability, Samsung has released a new version of the MagicInfo Server, V9 21.1052.0, which includes the required security patches.
Cybersecurity Challenge On-Premise
The current security incident – in which, according to market reports, outdated Magicinfo 9 networks containing adult content were compromised – once again demonstrates the structural weakness of on-premises solutions without a service contract.
Digital signage software developers and integrator are powerless with on-premises solutions without a service contract. Typically, providers don’t even have server access, meaning they don’t know the current software version of their installations.
Therefore, most providers rely on modern cloud and managed service installations, where users always have the latest version available.
