Recherche : [3CX] - Cyberveille

3CX warns customers to disable SQL database integrations https://www.bleepingcomputer.com/news/security/3cx-warns-customers-to-disable-sql-database-integrations/

15/12/2023 23:37:14

VoIP communications company 3CX warned customers today to disable SQL Database integrations because of risks posed by what it describes as a potential vulnerability.

Software Maker 3CX Was Compromised in First-of-its-Kind Threaded Supply-Chain Hack https://zetter.substack.com/p/software-maker-3cx-was-compromised

22/04/2023 17:28:04

Hackers first compromised a different software maker and embedded malware in one of its programs. 3CX got compromised when a worker downloaded that program. It's not known why worker downloaded it.

X_Trader Supply Chain Attack Affects Critical Infrastructure Organizations in U.S. and Europe https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/xtrader-3cx-supply-chain

21/04/2023 23:25:08

North Korean-linked operation affected more organizations beyond 3CX, including two critical infrastructure organizations in the energy sector.

3CX Breach Was a Double Supply Chain Compromise https://krebsonsecurity.com/2023/04/3cx-breach-was-a-double-supply-chain-compromise/

21/04/2023 08:44:36

We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX, a complex, lengthy intrusion that has the makings of a cyberpunk spy novel: North Korean hackers using legions of fake executive accounts…

Linux malware strengthens links between Lazarus and the 3CX supply‑chain attack https://www.welivesecurity.com/2023/04/20/linux-malware-strengthens-links-lazarus-3cx-supply-chain-attack/

21/04/2023 08:43:29

Similarities with newly discovered Linux malware used in Operation DreamJob corroborate the theory that the 3CX attack was carried out by Lazarus.

3CX Software Supply Chain Compromise Initiated by a Prior Software Supply Chain Compromise; Suspected North Korean Actor Responsible https://www.mandiant.com/resources/blog/3cx-software-supply-chain-compromise

20/04/2023 14:04:45

A software supply chain attack led to another software supply chain attack.

Not just an infostealer: Gopuram backdoor deployed through 3CX supply chain attack | Securelist https://securelist.com/gopuram-backdoor-deployed-through-3cx-supply-chain-attack/109344/

04/04/2023 20:43:33

A DLL named guard64.dll, which was loaded into the infected 3CXDesktopApp.exe process, was used in recent deployments of a backdoor that we dubbed “Gopuram” and had been tracking internally since 2020.

3CX Desktop App Compromised (CVE-2023-29059) https://www.fortinet.com/blog/threat-research/3cx-desktop-app-compromised

04/04/2023 08:17:12

FortiGuard Labs highlights how a digitally signed 3CX desktop app was reportedly used in a supply chain attack against 3CX Voice over Internet Protocol (VoIP) customers. Check back for analysis and coverage updates.

Information on Attacks Involving 3CX Desktop App https://www.trendmicro.com/en_us/research/23/c/information-on-attacks-involving-3cx-desktop-app.html

02/04/2023 22:23:14

In this blog entry, we provide technical details and analysis on the 3CX attacks as they happen. We also discuss available solutions which security teams can maximize for early detection and mitigate the impact of 3CX attacks.

3CX VoIP Software Compromise & Supply Chain Threats https://www.huntress.com/blog/3cx-voip-software-compromise-supply-chain-threats

30/03/2023 15:18:36

The 3CX VoIP Desktop Application has been compromised to deliver malware via legitimate 3CX updates. Huntress has been investigating this incident and working to validate and assess the current supply chain threat to the security community.

3CX Security Alert for Electron Windows App https://www.3cx.com/blog/news/desktopapp-security-alert/

30/03/2023 11:17:11

A security issue arose on Update 7, version numbers 18.12.407 & 18.12.416 only for our Electron Windows App. Check this post for more info.

Ironing out (the macOS details) of a Smooth Operator https://objective-see.org/blog/blog_0x73.html

30/03/2023 10:54:24

The 3CX supply chain attack, gives us an opportunity to analyze a trojanized macOS application

3CX: Supply Chain Attack Affects Thousands of Users Worldwide https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/3cx-supply-chain-attack

30/03/2023 10:32:25

North Korean-sponsored actors believed to be linked to attack that Trojanized several versions of 3CX DesktopApp

CrowdStrike Tracking Active Intrusion Campaign Targeting 3CX Customers https://www.reddit.com/r/crowdstrike/comments/125r3uu/20230329_situational_awareness_crowdstrike/

30/03/2023 09:04:31

What Happened On March 29, 2023, Falcon OverWatch observed unexpected malicious activity emanating from a legitimate …

Hackers compromise 3CX desktop app in a supply chain attack https://www.bleepingcomputer.com/news/security/hackers-compromise-3cx-desktop-app-in-a-supply-chain-attack/

30/03/2023 09:01:57

A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company's customers in an ongoing supply chain attack.

3CX users under DLL-sideloading attack: What you need to know https://news.sophos.com/en-us/2023/03/29/3cx-dll-sideloading-attack/

30/03/2023 09:00:47

A Trojanized version of the popular VOIP/PBX software is in the news; here’s what hunters and defenders are doing

IOCs

Liens par page

Filtres