Advertisement
Top
image credit: Freepik

3CX Supply chain attack allowed targeting cryptocurrency companies

April 4, 2023

Via: Security Affairs
Category:

As of Mar 22, 2023, SentinelOne observed a spike in behavioral detections of the 3CXDesktopApp, which is a popular voice and video conferencing software product.

The products from multiple cybersecurity vendors started detecting the popular software as malware suggesting that the company has suffered a supply chain attack.

SentinelOne is tracking the malicious activity as SmoothOperator, the company speculates that the threat actor behind the attack has set up its infrastructure starting as early as February 2022.

The company started distributing digitally signed Trojanized installers to its customers.

Read More on Security Affairs

RELATED PUBLICATIONS

The importance of the Vulnerability Operations Centre for cybersecurity
Are passwordless systems the future of authentication?
LockBit Bounces Back Shortly After Takedown and Police Trolling

Latest Publications

Sweden’s liquor supply severely impacted by ransomware attack on logistics company
Autodesk Drive Abused in Phishing Attacks 
Google fixed critical Chrome vulnerability CVE-2024-4058
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!