Date: April 07, 2024
Multiple cybersecurity firms have warned of a supply chain attack using a trojanized version of 3CX's software to target downstream customers.
3CX is a phone system developer used by more than 600,000 organizations worldwide, including American Express, BMW, McDonald’s, and the U.K.'s National Health Service. The attack, dubbed "Smooth Operator," involves the delivery of trojanized 3CXDesktopApp installers to install infostealer malware inside corporate networks, capable of stealing data and stored credentials from Google Chrome, Microsoft Edge, Brave, and Firefox user profiles.
Researchers report that attackers are targeting both the Windows and macOS versions of the compromised VoIP app. The Linux, iOS, and Android versions appear to be unaffected. The attackers are believed to be the North Korean threat actor Labyrinth Chollima, a subgroup of the notorious Lazarus Group. It appears to be a targeted attack from an Advanced Persistent Threat, perhaps even state-sponsored.
If you are a 3CX user, the company suggests uninstalling the app and installing it again or using its PWA client as a workaround. While we don't know how many organizations have been potentially compromised, Shodan.io reports that there are currently over 240,000 publicly exposed 3CX phone management systems.
Stay vigilant and take immediate action if you suspect any suspicious activity.
Amazon Books 3X Quarterly Profits Booking $10.4 Billion
Amazon, the eCommerce giant, reported a whopping $10.4 billion in quarterly profits, a significant increase from the previous year.
Bumble Empowers Female Users With “Opening Moves” Feature
Bumble, the famous women-first dating app, has unveiled a refreshed visual identity, a new app interface and “Opening Moves” feature.
ChatGPT’s Memory Feature Remembers User-Supplied Insights
OpenAI’s ChatGPT has now simplified repetitive conversations by adding the memory feature to its platform for GPT Plus subscribers.
Google Layoffs Entire Python Team In One Day
Google has laid off employees from multiple teams in the past several days. In its latest layoff, it fired the entire Python team to reduce resource costs.