all InfoSec news
US, European energy firms, others hit by 3CX-related supply chain attack
SC Magazine feed for Risk Management www.scmagazine.com
Two energy sector entities in the U.S. and Europe, as well as two other financial trading organizations, have been impacted by a software supply chain attack launched by North Korean state-sponsored threat operation Lazarus Group involving the use of a trojanized version of Trading Technologies' X_Trader software that was initially reported to have affected 3CX, according to The Record, a news site by cybersecurity firm Recorded Future.
3cx attack critical infrastructure cybersecurity energy energy sector entities europe financial future lazarus lazarus group north north korean organizations recorded future sector software software supply chain software supply chain attack sponsored state supply supply chain supply chain attack technologies the record third party risk threat trading trading technologies version x_trader