Fuze Handsets

Fuze, a multi-platform voice, messaging, and collaboration service, released an update to address three security vulnerabilities impacting user privacy, access controls, and authentication in the TPN Handset Portal. The vulnerabilities were reported to Fuze in April and the company released a patch on May 6; however, the details of the vulnerabilities were not made public until August 22. According to Fuze, no user action is required for the update. The NJCCIC recommends users and administrators review Rapid7’s advisory and create strong, complex passwords to access the TPN portal.