The incident responders investigating how hackers carried out a complex supply-chain attack targeting enterprise phone provider 3CX say the company was compromised by another supply chain attack ...

Suspected North Korean hackers infiltrated a software firm that claims hundreds of thousands of customers around the world in a cyberattack that shows Pyongyang’s advanced hacking capabilities ...

Enterprise phone provider 3CX has confirmed that North Korea–backed hackers were behind last month’s supply chain attack that appeared to target cryptocurrency companies.. 3CX, which provides ...

The customer support team for 3CX waited six days to address warnings that a recent update for its desktop VoIP client was malicious, and then its only advice was for customers to investigate the ...

VoIP communications company 3CX warned customers today to disable SQL database integrations due to potential risks associated with what it describes as a potential vulnerability.

17 thoughts on “ 3CX Breach Was a Double Supply Chain Compromise ” G.Scott H. April 20, 2023 I cannot speak for all Linux distributions, but on Slackware the techniques described would not ...

In the case of 3CX, both Windows and macOS second-stage malware versions exist. This article demonstrates the existence of a Linux backdoor that probably corresponds to the SIMPLESEA macOS malware ...

The 3CX supply chain attack was not caught as quickly as it could’ve been because of “alert fatigue” and the way that the vendor and users responded to alerts from security tools.

VoIP communications company 3CX confirmed today that a North Korean hacking group was behind last month's supply chain attack. "Based on the Mandiant investigation into the 3CX intrusion and ...

For instance, while 3CX's more than 600,000 customers is double the number of SolarWinds customers at the time of the supply chain breach of that company, the 3CX attack was caught much faster.