all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

3CX Supply Chain Attack Campaign

Add to bookmarks
April 1, 2023, 12:05 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

On March 29th 2023, CrowdStrike published a blog outlining a supply chain attack leveraging the 3CXDesktopApp - a softphone application from 3CX. The ThreatLabz Team immediately started hunting for IoCs on the Zscaler Cloud.


We observed infections dating back to February 2023 for both the Windows as well as the MacOS variant of the Trojanized 3CXDesktopApp installers.


Fig.1 - Infections dating back to February 2023 in Zscaler Cloud


In this case the Threat Actors targeted various industry verticals such as: …

3cx 3cxdesktopapp application attack back blog campaign case cloud crowdstrike dating february hunting industry infection infections iocs macos manufacturing march services supply supply chain supply chain attack team technology threat threat actors windows zscaler

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

ISC Stormcast For Friday, April 26th, 2024 https://isc.sans.edu/podcastdetail/8956, (Fri, Apr 26th) 37 minutes ago | malware.news
topic
Threat Modeling and Understanding Inherent Threats - Adam Shostack - ESW #359 3 hours ago | malware.news
adam adam shostack article link +8
How to change your IP address, why you'd want to - and when you shouldn't 3 hours ago | malware.news
access address a network article +11
Rubrik IPO signals potential cybersecurity-led tech market revival 4 hours ago | malware.news
article cybersecurity experts ipo +9
Issues Resolving Symbols on Windows 11 on ARM64 5 hours ago | malware.news
arm64 blog blog post development +8
Investigating industrial control systems using Microsoft’s ICSpector open-source framework 6 hours ago | malware.news
blog control control systems framework +9
After a 19-month saga, Broadcom finally patches Brocade SANnav bugs 6 hours ago | malware.news
article broadcom brocade bugs +9
Navigating the cyber seas: Clarity, compliance, and unified endpoint management 6 hours ago | malware.news
article can clarity compass +10
These SMBs are hot threat targets but they're shrugging off security help 8 hours ago | malware.news
article companies cybersecurity demand +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs