Lazarus Sub-Group Labyrinth Chollima Uncovered as Mastermind in 3CX Supply Chain Attack

Enterprise communications service provider 3CX confirmed that the supply chain attack targeting its desktop application for Windows and macOS was the handiwork of a threat actor with North Korean nexus.
The findings are the result of an interim assessment conducted by Google-owned Mandiant, whose services were enlisted after the intrusion came to light late last month. The threat intelligence

3cx actor application assessment attack communications desktop desktop application enterprise findings google intelligence intrusion lazarus macos mandiant nexus north north korean result service service provider services supply supply chain supply chain attack targeting threat threat actor threat intelligence windows