Beware: infected 3CX desktop app spread by North Korean hackers
A popular voice-over-internet-protocol (VOIP) software, 3CX, is being abused by attackers to spread a malicious payload. A North Korean threat actor is suspected to be behind the supply-chain attack.
“The affected software is 3CX – a legitimate PBX phone system available on Windows, Linux, Android, and iOS. The application has been abused by the threat actor to add an installer that communicates with various command-and-control (C2) servers,” cybersecurity company Sophos said.
- March 30, 2023
- 10:19 am