3CX Software Supply Chain Compromise Initiated by a Prior Software Supply Chain Compromise; Suspected North Korean Actor Responsible

[[correlate]]

Content source

https://www.mandiant.com/resources/blog/3cx-software-supply-chain-compromise

In March 2023, Mandiant Consulting responded to a supply chain compromise that affected 3CX Desktop App software. During this response, Mandiant identified that the initial compromise vector of 3CX’s network was via malicious software downloaded from Trading Technologies website. This is the first time Mandiant has seen a software supply chain attack lead to another software supply chain attack.

https://www.mandiant.com/resources/blog/3cx-software-supply-chain-compromise

 

[Trident]

It was attributed to the North Korean Lazarus group, yes.

 

[plat]

It was attributed to the North Korean Lapsu$ group, yes.

not Lazarus?

 

[Trident]

not Lazarus?

It is Lazarus indeed, I corrected the mistake. Thanks.