all InfoSec news
Lazarus Assault Via 3CX Exposes Need to Rethink Security
Malware Analysis, News and Indicators - Latest topics malware.news
When North Korean threat actors the Lazarus Group exploited a legitimate update to the 3CXDesktopApp—a softphone application from 3CX—security professionals didn’t initially pick up on the import of the activity and tactics that signaled the attack. In fact, according to CrowdStrike, which discovered the attack, even experienced security professionals pooh-poohed detections as false positives. And..
The post Lazarus Assault Via 3CX Exposes Need to Rethink Security appeared first on Security Boulevard.
Article Link: https://securityboulevard.com/2023/04/lazarus-assault-via-3cx-exposes-need-to-rethink-security/
1 post - 1 participant …
3cx 3cxdesktopapp application attack crowdstrike detections exploited fact false positives import lazarus lazarus group north north korean professionals security security boulevard security professionals tactics threat threat actors update