admin@swagenews.com

Facebook Twitter Youtube
Swagenews logo
Home News

New supply chain attack targeting customers of a phone system with 12 million users

New supply chain attack targeting customers of a phone system with 12 million users

New supply chain attack targeting customers of a phone system with 12 million users

Share on FacebookShare on Twitter

Multiple security firms have raised the alarm about an active supply chain attack that is targeting downstream customers with a trojanized version of 3CX’s widely used voice and video-calling client.

3CX created a software-based phone system that is used by over 600,000 organizations worldwide, including American Express, BMW, McDonald’s, and the United Kingdom’s National Health Service. The company claims to have over 12 million daily users worldwide.

CrowdStrike, Sophos, and SentinelOne researchers published blog posts on Wednesday detailing a SolarWinds-style attack dubbed “Smooth Operator” by SentinelOne that involves the delivery of trojanized 3CXDesktopApp installers to install infostealer malware inside corporate networks.

Also, read: Google faces antitrust scrutiny in Spain over news licensing

This malware is capable of stealing data and stored credentials from Google Chrome, Microsoft Edge, Brave, and Firefox user profiles. Other malicious activity observed by CrowdStrike includes beaconing to actor-controlled infrastructure, deployment of second-stage payloads, and, in a few cases, “hands-on-keyboard activity.”

According to security researchers, attackers are targeting both the Windows and macOS versions of the compromised VoIP app. For the time being, it appears that the Linux, iOS, and Android versions are unaffected.

Also, read: Microsoft unleashes generative AI on cybersecurity

SentinelOne researchers stated that they first noticed suspicious activity on March 22 and immediately investigated the anomalies, which led to the discovery that some organizations were attempting to install a trojanized version of the 3CX desktop app that had been signed with a valid digital certificate. Patrick Wardle, an Apple security expert, discovered that Apple had notarized the malware, which means that the company checked it for malware and found none.

The CISO of 3CX According to Pierre Jourdan, the company is aware of a “security issue” affecting its Windows and MacBook applications.

Jourdan notes that this appears to have been a “targeted attack from an Advanced Persistent Threat, perhaps even state-sponsored” hacker. CrowdStrike suggests that North Korean threat actor Labyrinth Chollima, a subgroup of the notorious Lazarus Group, is behind the supply-chain attack.  

As a workaround, 3CX company is urging its customers to uninstall the app and install it again, or alternatively use its PWA client. “In the meantime we apologize profusely for what occurred and we will do everything in our power to make up for this error,” Jourdan said.

There are many unknowns about the 3CX supply-chain attack, including how many organizations may have been compromised. There are currently over 240,000 publicly exposed 3CX phone management systems, according to Shodan.io, a site that maps internet-connected devices.

Tags: CustomersNew supply chain attackphone system with 12 million users
Previous Post

Google faces antitrust scrutiny in Spain over news licensing

Next Post

The new YouTube metric displays an artist’s reach across all formats, including Shorts

Related Posts

We have hired 70 Kano lawyers and are working to strengthen the legal field.
News

We have hired 70 Kano lawyers and are working to strengthen the legal field.

December 6, 2024
Farotimi: Afe Babalola justifies the lawsuit as the group is planning a protest
News

Farotimi: Afe Babalola justifies the lawsuit as the group is planning a protest

December 6, 2024
MARRIED AT 102, 100 A TRUE LOVE STORY
News

MARRIED AT 102, 100 A TRUE LOVE STORY

December 5, 2024
Colombian Finance Minister Accused Of Bribery Resigns
News

Colombian Finance Minister Accused Of Bribery Resigns

December 5, 2024
STUDENT GETS REWARDED FOR ACADEMIC EXCELLENCE
News

STUDENT GETS REWARDED FOR ACADEMIC EXCELLENCE

December 5, 2024
News

Pastor Tobi Adegboyega Loses Deportation Appeal Amid £1.87 Million Fraud Allegations

December 4, 2024
Next Post
The new YouTube metric displays an artist's reach across all formats, including Shorts

The new YouTube metric displays an artist's reach across all formats, including Shorts

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

  • Trending
  • Comments
  • Latest
We have hired 70 Kano lawyers and are working to strengthen the legal field.

We have hired 70 Kano lawyers and are working to strengthen the legal field.

December 6, 2024
Farotimi: Afe Babalola justifies the lawsuit as the group is planning a protest

Farotimi: Afe Babalola justifies the lawsuit as the group is planning a protest

December 6, 2024
Bobrisky Brags About Having Painful Period Pain

Bobrisky Brags About Having Painful Period Pain

December 6, 2024
World Bank To Give $100bn Loan For Poorest Countries

World Bank To Give $100bn Loan For Poorest Countries

December 6, 2024

Recent News

We have hired 70 Kano lawyers and are working to strengthen the legal field.

We have hired 70 Kano lawyers and are working to strengthen the legal field.

December 6, 2024
Farotimi: Afe Babalola justifies the lawsuit as the group is planning a protest

Farotimi: Afe Babalola justifies the lawsuit as the group is planning a protest

December 6, 2024
Bobrisky Brags About Having Painful Period Pain

Bobrisky Brags About Having Painful Period Pain

December 6, 2024
World Bank To Give $100bn Loan For Poorest Countries

World Bank To Give $100bn Loan For Poorest Countries

December 6, 2024

SWAGENEWS brings to you undiluted and detailed reports, news and updates that seeks to inform, engage and empower the world. We expose the information that wasn’t known before or current events broadcast over the radio, television, online or in print media. 

Facebook Twitter Youtube

More from Us

  • WORLD NEWS
  • Covid-19
  • HEADLINES
  • AVIATION
  • Columns
Menu
  • WORLD NEWS
  • Covid-19
  • HEADLINES
  • AVIATION
  • Columns

Contact

  • Contact Us
  • Work with Us/ iWitness
Menu
  • Contact Us
  • Work with Us/ iWitness

© 2024 Swage Media, All rights Reserved