all InfoSec news
Threat Advisory: 3CX Softphone Supply Chain Compromise
March 30, 2023, 10:29 p.m. | Cisco Talos
Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com
- Cisco Talos is tracking and actively responding to a supply chain attack involving the 3CX Desktop Softphone application.
- This is a multi-stage attack that involves sideloading DLLs, seven-day sleep routines, and additional payloads dependent on a now-removed GitHub repository for Windows based systems.
- MacOS systems used a different infection chain
3cx advisory application attack cisco cisco talos compromise desktop github infection macos repository sideloading sleep stage supply supply chain supply chain attack supply chain compromise systems talos threat threat advisory tracking windows
More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Offensive Security Engineer
@ Ivanti | United States, Remote
Senior Security Engineer I
@ Samsara | Remote - US
Senior Principal Information System Security Engineer
@ Chameleon Consulting Group | Herndon, VA
Junior Detections Engineer
@ Kandji | San Francisco
Data Security Engineer/ Architect - Remote United States
@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700