3cx: lessons learned - Reversing Labs | lazarus.day

3cx: lessons learned

2023-10-26 • Reversing Labs •

https://lascon2023.sched.com/event/1RE5e/3cx-lessons-learned

#Youtube #3CXDesktopApp

Thumbnail for 3cx: lessons learned

The LASCON session abstract covers the 3CX software supply chain attack in which a VoIP vendor shipped malicious code to thousands of customers. Some affected customers later reported compromises inside their own environments. The abstract frames the incident as a case study for reducing software supply chain risk, but it does not provide malware, infrastructure, or attribution details.

Related Reports

2023-11-23 • 40% Match

ROK-UK Joint Cyber Security Advisory(DPRK S/W supply chain attacks)

KRNCSC

#News #MagicLine4NX #3CXDesktopApp

Shares tag: 3CXDesktopApp • Published within a month

2023-10-26 • 40% Match

State-Sponsored Financially Motivated Attacks

Microsoft

#Cryptocurrency #3CXDesktopApp #Slides #CitrineSleet

Shares tag: 3CXDesktopApp • Published within a week

2023-10-17 • 40% Match

He is everywhere: A tale of Lazarus and his family

lazarusholic

#Youtube #Slides

Shares tag: Youtube • Published within a month

2023-10-05 • 40% Match

Mac-ing sense of the 3CX supply chain attack: analysis of the macOS payloads

Objective-see

#3CXDesktopApp

Shares tag: 3CXDesktopApp • Published within a month

2023-10-04 • 40% Match

LAZARUS CAMPAIGNS AND BACKDOORS IN 2022-23

ESET

#DreamJob #Inception #MagicLine4NX #3CXDesktopApp #CrossWebEX #VeraPort #DangerousPassword

Shares tag: 3CXDesktopApp • Published within a month

2023-09-27 • 40% Match

Analyzing state-sponsored malware on macOS

Jamf

#macOS #3CXDesktopApp #RustBucket #JokerSpy #JumpCloud

Shares tag: 3CXDesktopApp • Published within a month