TechCrunch

There’s a new supply chain attack targeting customers of a phone system with 12 million users

Multiple security firms have sounded the alarm about an active supply chain attack that’s using a trojanized version of 3CX’s widely used voice and video-calling client to target downstream customers.
CRN

Mandiant Attributes Supply Chain Attack To North Korean Group, 3CX Says

The disclosure appears to confirm an earlier attribution by CrowdStrike to a group working on behalf of North Korea’s government. Mandiant has attributed the 3CX supply chain compromise with “high ...
Bleeping Computer

Critical infrastructure also hit by supply chain attack behind 3CX breach

The X_Trader software supply chain attack that led to last month's 3CX breach has also impacted at least several critical infrastructure organizations in the United States and Europe, according to ...
Computer Weekly

3CX unified comms users hit by supply chain attacks

Customers of 3CX, a unified communications technology supplier, are being targeted by a North Korea-linked advanced persistent threat (APT) actor in a supply chain attack spreading via a compromised ...
CSOonline

3CX DesktopApp compromised by supply chain attack

3CX will be releasing an update for the DesktopApp in the next few hours; meanwhile, users are urged to use the PWA Client instead. 3CX is working on a software update for its 3CX DesktopApp, after ...
TechCrunch

3CX blames North Korea for supply chain mass-hack

Enterprise phone provider 3CX has confirmed that North Korea–backed hackers were behind last month’s supply chain attack that appeared to target cryptocurrency companies. 3CX, which provides online ...