Supply Chain Compromise Leads to Trojanized Installers for Notezilla, RecentX, Copywhiz

June 27, 2024, 6:01 p.m. | Rapid7

The following Rapid7 analysts contributed to this research: Leo Gutierrez, Tyler McGraw, Sarah Lee, and Thomas Elkins.

Executive Summary

On Tuesday, June 18th, 2024, Rapid7 initiated an investigation into suspicious activity in a customer environment. Our investigation identified that the suspicious behavior was emanating from the installation of Notezilla, a

analysts behavior compromise contributed customer detection and response environment executive installation investigation june lee leo managed detection and response (mdr) mcgraw rapid7 research supply supply chain supply chain compromise suspicious behavior thomas trojanized installers tuesday tyler

Visit resource

More from blog.rapid7.com / Rapid7 Blog

Metasploit Weekly Wrap-Up 06/28/2024 2 days, 13 hours ago | blog.rapid7.com

command command injection command injection vulnerability cve +18

Supply Chain Compromise Leads to Trojanized Installers for Notezilla, RecentX, Copywhiz 3 days, 16 hours ago | blog.rapid7.com

analysts behavior compromise contributed +21

Takeaways From The Take Command Summit: Unprecedented Threat Landscape 4 days, 14 hours ago | blog.rapid7.com

artificial intelligence attack command cybersecurity +15

Authentication Bypasses in MOVEit Transfer and MOVEit Gateway 5 days, 16 hours ago | blog.rapid7.com

authentication cve cve-2024 emergent threat response +11

Takeaways From The Take Command Summit: Understanding Modern Cyber Attacks 5 days, 16 hours ago | blog.rapid7.com

artificial artificial intelligence attacks command +20

From Top Dogs to Unified Pack 5 days, 20 hours ago | blog.rapid7.com

cloud cloud environments complex landscape compliance +11

Metasploit Weekly Wrap-Up 06/21/2024 1 week, 2 days ago | blog.rapid7.com

apache argument check check point +17

Takeaways From The Take Command Summit: Understanding Modern Cyber Attacks 1 week, 2 days ago | blog.rapid7.com

artificial artificial intelligence attacks command +20

Helpful tools to get started in IoT Assessments 1 week, 5 days ago | blog.rapid7.com

assessments can internet internet of things +6

Senior Streaming Platform Engineer

@ Armis Security | Tel Aviv-Yafo, Tel Aviv District, Israel

View on infosec-jobs.com

Senior Streaming Platform Engineer

@ Armis Security | Tel Aviv-Yafo, Tel Aviv District, Israel

View on infosec-jobs.com

Deputy Chief Information Officer of Operations (Senior Public Service Administrator, Opt. 3)

@ State of Illinois | Springfield, IL, US, 62701-1222

View on infosec-jobs.com

Deputy Chief Information Officer of Operations (Senior Public Service Administrator, Opt. 3)

@ State of Illinois | Springfield, IL, US, 62701-1222

View on infosec-jobs.com

Analyst, Security

@ DailyPay | New York City

View on infosec-jobs.com

Analyst, Security

@ DailyPay | New York City

View on infosec-jobs.com

all InfoSec news

Supply Chain Compromise Leads to Trojanized Installers for Notezilla, RecentX, Copywhiz

Executive Summary

More from blog.rapid7.com / Rapid7 Blog

Jobs in InfoSec / Cybersecurity

Senior Streaming Platform Engineer

Senior Streaming Platform Engineer

Deputy Chief Information Officer of Operations (Senior Public Service Administrator, Opt. 3)

Deputy Chief Information Officer of Operations (Senior Public Service Administrator, Opt. 3)

Analyst, Security

Analyst, Security