all InfoSec news
The 3CX attack gets wilder, marks first 'cascading software supply chain compromise'
Malware Analysis, News and Indicators - Latest topics malware.news
The security firm Mandiant released a report on Wednesday that traced the breach at 3CX back to yet another supply chain-compromised application, X-Trader, a derivatives trading software application manufactured by the firm Trading Technologies.
The report by Mandiant Consulting, which 3CX hired to help it investigate the supply chain hack, said that its researchers identified an installer with the filename X_TRADER_r7.17.90p608.exe as the application that led to the deployment of the malicious modular backdoor on the personal computer of …
3cx application attack back backdoor breach compromise compromised computer consulting deployment derivatives employee filename hack installer malicious mandiant modular personal report researchers security software software supply chain supply supply chain supply chain compromise supply chain hack technologies trading trading technologies