Lucene search
K

6 matches found

Securelist
Securelist
added 2023/08/30 10:0 a.m.101 views

IT threat evolution in Q2 2023

IT threat evolution in Q2 2023 IT threat evolution in Q2 2023. Non-mobile statistics IT threat evolution in Q2 2023. Mobile statistics Targeted attacks Gopuram backdoor deployed through 3CX supply-chain attack Earlier this year, a Trojanized version of the 3CXDesktopApp, a popular VoIP program, w...

7.5CVSS10AI score0.99999EPSS
Exploits73
The Hacker News
The Hacker News
added 2023/04/21 9:55 a.m.120 views

N.K. Hackers Employ Matryoshka Doll-Style Cascading Supply Chain Attack on 3CX

The supply chain attack targeting 3CX was the result of a prior supply chain compromise associated with a different company, demonstrating a new level of sophistication with North Korean threat actors. Google-owned Mandiant, which is tracking the attack event under the moniker UNC4736, said the...

8.8CVSS8.4AI score0.23546EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/04/12 4:6 a.m.69 views

North Korean Hackers Uncovered as Mastermind in 3CX Supply Chain Attack

Enterprise communications service provider 3CX confirmed that the supply chain attack targeting its desktop application for Windows and macOS was the handiwork of a threat actor with North Korean nexus. The findings are the result of an interim assessment conducted by Google-owned Mandiant, whose...

7.8CVSS7.5AI score0.04373EPSS
Exploits1
The Hacker News
The Hacker News
added 2023/04/04 3:54 a.m.87 views

Cryptocurrency Companies Targeted in Sophisticated 3CX Supply Chain Attack

The adversary behind the supply chain attack targeting 3CX deployed a second-stage implant specifically singling out a small number of cryptocurrency companies. Russian cybersecurity firm Kaspersky, which has been internally tracking the versatile backdoor under the name Gopuram since 2020, said ...

8.8CVSS7.5AI score0.44647EPSS
Exploits2
The Hacker News
The Hacker News
added 2023/04/04 3:54 a.m.1 views

Cryptocurrency Companies Targeted in Sophisticated 3CX Supply Chain Attack

The adversary behind the supply chain attack targeting 3CX deployed a second-stage implant specifically singling out a small number of cryptocurrency companies. Russian cybersecurity firm Kaspersky, which has been internally tracking the versatile backdoor under the name Gopuram since 2020, said ...

8.8CVSS6.6AI score0.44647EPSS
Exploits2
Securelist
Securelist
added 2023/04/03 12:10 p.m.31 views

Not just an infostealer: Gopuram backdoor deployed through 3CX supply chain attack

On March 29, Crowdstrike published a report about a supply chain attack conducted via 3CXDesktopApp, a popular VoIP program. Since then, the security community has started analyzing the attack and sharing their findings. The following has been discovered so far: The infection is spread via...

7.1AI score
Exploits0
Rows per page
Query Builder