North Korea Hacking Cryptocurrency Sites with 3CX Exploit

News:

Researchers at Russian cybersecurity firm Kaspersky today revealed that they identified a small number of cryptocurrency-focused firms as at least some of the victims of the 3CX software supply-chain attack that’s unfolded over the past week. Kaspersky declined to name any of those victim companies, but it notes that they’re based in “western Asia.”

Security firms CrowdStrike and SentinelOne last week pinned the operation on North Korean hackers, who compromised 3CX installer software that’s used by 600,000 organizations …

3cx asia attack companies compromised crowdstrike cryptocurrency cybersecurity exploit hackers hacking installer kaspersky korea malware name north north korea north korean north korean hackers organizations pinned researchers russian security sentinelone software supply supply chain vendor victim vulnerabilities western