CRN

3CX Attack Shows The Dangers Of ‘Alert Fatigue’ For Cybersecurity

The widely felt supply chain compromise of VoIP vendor 3CX was not caught as quickly as it might have been, as both the vendor and users initially assumed the alerts were false positives, according to ...
PC Magazine

3CX Supply Chain Attack Traced to Employee Who Installed Malicious App

The supply chain attack on the 3CX voice-calling app has been traced back to a company employee installing a legitimate, but malware -laden program, onto their personal computer. The findings come ...
Dark Reading

3CX Breach Widens as Cyberattackers Drop Second-Stage Backdoor

The threat actor — believed to be the Lazarus Group — that recently compromised 3CX's VoIP desktop application to distribute information-stealing software to the company's customers has also dropped a ...
CRN

‘First’ Cyberattack Of Its Kind: 3CX Compromise Blamed On Earlier Supply Chain Breach

‘This is the first time Mandiant has seen a software supply chain attack lead to another software supply chain attack,’ the firm said in a post Thursday. Prominent cyberattack investigator Mandiant ...
Bleeping Computer

3CX confirms North Korean hackers behind supply chain attack

VoIP communications company 3CX confirmed today that a North Korean hacking group was behind last month's supply chain attack. "Based on the Mandiant investigation into the 3CX intrusion and supply ...