3CX Incident Attributed to North Korea; New LockBit MacOS Sample | allinfosecnews.com

April 25, 2023, 10:12 a.m. | Jörg Abraham

Security Boulevard securityboulevard.com

Mandiant Attributes 3CX Supply Chain Attack to North Korean Activity Cluster

On April 11, 2023, 3CX reported that Mandiant - who investigated the supply chain attack using a digitally signed 3CXDesktopApp installer - attributes the attack to an activity cluster named UNC4736. Mandiant assesses with high confidence that UNC4736 has a North Korean nexus. [1]

Mandiant´s assessment corroborates findings from Crowdstrike [2] and Kaspersky [3] who analyzed the infected 3CXDesktopApp. Kaspersky discovered a backdoor …

3cx 3cxdesktopapp april assessment attack attributes backdoor cluster crowdstrike cybercriminal findings high incident installer kaspersky korea lazarus lazarus group links lockbit macos malware mandiant nexus north north korea north korean organization ransomware supply supply chain supply chain attack the company threat intelligence threats and vulnerabilities umbrella vulnerabilities

More from securityboulevard.com / Security Boulevard

Navigating Email: From Spam Wars to Trusted Relationships 2 hours ago | securityboulevard.com

art call communication email +6

USENIX Security ’23 – Intender: Fuzzing Intent-Based Networking with Intent-State Transition Guidance 20 hours ago | securityboulevard.com

access authors channel conference +20

Disgraced, Twice Impeached, Former President Joins His Long List Of Campaign And Administration Officials And … 21 hours ago | securityboulevard.com

administration advisors campaign candidates +8

What is an IS (RBI) Audit? 1 day, 4 hours ago | securityboulevard.com

address audit banking banks +27

The Ultimate Guide to FedRAMP Marketplace Designations 1 day, 12 hours ago | securityboulevard.com

agency authentication can cloud +19

Understanding Credential Phishing 1 day, 12 hours ago | securityboulevard.com

attackers breach breaches ceo +23

Adaptive DDoS Defense’s Value in the Security Ecosystem 1 day, 13 hours ago | securityboulevard.com

adaptive ddos analytics & intelligence and response attack +24

Understanding Business Email Compromise (BEC) 1 day, 13 hours ago | securityboulevard.com

attackers attacks bec business +17

Risk vs. Threat vs. Vulnerability: What is the difference? 1 day, 14 hours ago | securityboulevard.com

ciso suite click cyber lingo cyber security risks +11

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com