Hacked videoconferencing firm 3CX says North Korea behind massive intrusion



News Hacked videoconferencing firm 3CX says North Korea behind massive intrusion Company cites researchers’ ‘high confidence’ that DPRK target MacOS and Windows with malware and took control of devices Nils Weisensee April 12, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON An illustration of North Korean hackers in Pyongyang North Korea was very likely behind the massive breach of virtual phone service company 3CX, the company has confirmed. In a report released Tuesday, the company’s chief information security officer Pierre Jourdan stated that cybersecurity firm Mandiant, which had been tasked with investigating the intrusion, assessed with “high confidence” that the so-called supply chain attack was linked to the DPRK. The attackers infected the company’s systems with a piece of malware named TAXHAUL, which installs a component referred to as COLDCAT used to download additional malware on systems running Microsoft Windows, according to Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push 02How long-range strikes on Russia could impact North Korean troop deployments 03How North Korean hackers and IT workers collude to cause chaos 04What pro-Trump think tanks reveal about his likely North Korea policy priorities 05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 06All the question marks hanging over Trump’s approach to North Korea in term two 07Time almost up for North Korea’s plan to launch 3 military satellites in 2024 08Trump return rekindles prospects of North Korea talks, but Russia stands in way

News

Hacked videoconferencing firm 3CX says North Korea behind massive intrusion

Company cites researchers’ ‘high confidence’ that DPRK target MacOS and Windows with malware and took control of devices

Nils Weisensee April 12, 2023

Hacked videoconferencing firm 3CX says North Korea behind massive intrusion

An illustration of North Korean hackers in Pyongyang

North Korea was very likely behind the massive breach of virtual phone service company 3CX, the company has confirmed.

In a report released Tuesday, the company’s chief information security officer Pierre Jourdan stated that cybersecurity firm Mandiant, which had been tasked with investigating the intrusion, assessed with “high confidence” that the so-called supply chain attack was linked to the DPRK.

The attackers infected the company’s systems with a piece of malware named TAXHAUL, which installs a component referred to as COLDCAT used to download additional malware on systems running Microsoft Windows, according to

01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push
02How long-range strikes on Russia could impact North Korean troop deployments
03How North Korean hackers and IT workers collude to cause chaos
04What pro-Trump think tanks reveal about his likely North Korea policy priorities
05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump.
06All the question marks hanging over Trump’s approach to North Korea in term two
07Time almost up for North Korea’s plan to launch 3 military satellites in 2024
08Trump return rekindles prospects of North Korea talks, but Russia stands in way

Hacked videoconferencing firm 3CX says North Korea behind massive intrusion

LATEST ANALYSIS

Similar Articles

About the Author

Nils Weisensee