all InfoSec news
Red flags flew over supply chain-compromised 3CX update
Malware Analysis, News and Indicators - Latest topics malware.news
ReversingLabs is analyzing a supply chain compromise of the firm 3CX Ltd., a maker of enterprise voice over IP (VOIP) solutions. Beginning on March 22nd, 2023, compromised versions of the 3CXDesktopApp, a desktop client version of the company’s VoIP software, were found to contain malicious code.
While more time and effort will be needed to fully reconstruct and study this incident, our analysis of the malicious files used in the attack points strongly to a compromise of 3CX’s software build …
3cx 3cxdesktopapp analysis attack build client code compromise compromised desktop enterprise files incident malicious march pipeline reversinglabs software solutions study supply supply chain supply chain compromise the company update version voice voip