"Massive Supply Chain Attack Targets 3CX Users with Trojanized Apps"
TL;DR Summary
Enterprise communications software maker 3CX has confirmed that multiple versions of its desktop app for Windows and macOS are affected by a supply chain attack. The attack leveraged a technique called DLL side-loading to load a rogue library referred to as "ffmpeg.dll" that's designed to read encrypted shellcode from another DLL called "d3dcompiler_47.dll." Cybersecurity firm CrowdStrike has attributed the attack with high confidence to Labyrinth Chollima, a North Korea-aligned state-sponsored actor.
Topics:business#3cx#cyber-threat-supply-chain-attack#cybersecurity#labyrinth-chollima#malware#supply-chain-attack
- 3CX Supply Chain Attack — Here's What We Know So Far The Hacker News
- Trojanized Windows and Mac apps rain down on 3CX users in massive supply chain attack Ars Technica
- There’s a new supply chain attack targeting customers of a phone system with 12 million users TechCrunch
- 3CX Supply Chain Attack: 8 Biggest Things To Know CRN
- 3CX knew its app was flagged as malicious, but took no action for 7 days Ars Technica
Reading Insights
Total Reads
0
Unique Readers
1
Time Saved
3 min
vs 4 min read
Condensed
89%
674 → 71 words
Want the full story? Read the original article
Read on The Hacker News