all InfoSec news
3CX Desktop Client Under Supply Chain Attack
March 30, 2023, 10:18 p.m. |
BankInfoSecurity.com RSS Syndication www.bankinfosecurity.com
Suspected North Korean hackers trojanized installers of a voice and video calling desktop client made by 3CX and used by major multinational companies. The vulnerability traces to a poisoned Electron software library file, an open-source framework for user interfaces.
3cx attack client companies desktop electron file framework hackers interface library major north north korean north korean hackers software supply supply chain supply chain attack traces under user interface video voice vulnerability
More from www.bankinfosecurity.com / BankInfoSecurity.com RSS Syndication
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cloud Technical Solutions Engineer, Security
@ Google | Mexico City, CDMX, Mexico
Assoc Eng Equipment Engineering
@ GlobalFoundries | SGP - Woodlands
Staff Security Engineer, Cloud Infrastructure
@ Flexport | Bellevue, WA; San Francisco, CA
Software Engineer III, Google Cloud Security and Privacy
@ Google | Sunnyvale, CA, USA
Software Engineering Manager II, Infrastructure, Google Cloud Security and Privacy
@ Google | San Francisco, CA, USA; Sunnyvale, CA, USA