North Korean hackers targeting phone conferencing software, security firm says



News North Korean hackers targeting phone conferencing software, security firm says Attack grants access to users’ system and browser data and aligns with broader goal of raising money for regime Shreyas Reddy March 31, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON Representation of hackers gaining access to a system \| Image: Fort George G. Meade Public Affairs Office Flickr - CC BY 2.0 (March 25, 2018) A U.S. cybersecurity firm has attributed a recent attack on a popular business communications tool to a North Korean hacker network associated with the Lazarus Group. CrowdStrike said it observed malicious activity originating from 3CXDesktopApp, a voice and video conferencing software product developed by virtual phone service company 3CX, in a post on its website Wednesday. This malicious activity reportedly included “beaconing” to infrastructure controlled by the threat actor, deployment of additional payloads, and in some cases, remote activity carried out directly by attackers already inside the target’s operating environment. CrowdStrike Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push 02How long-range strikes on Russia could impact North Korean troop deployments 03How North Korean hackers and IT workers collude to cause chaos 04What pro-Trump think tanks reveal about his likely North Korea policy priorities 05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 06All the question marks hanging over Trump’s approach to North Korea in term two 07Time almost up for North Korea’s plan to launch 3 military satellites in 2024 08Trump return rekindles prospects of North Korea talks, but Russia stands in way

News

North Korean hackers targeting phone conferencing software, security firm says

Attack grants access to users’ system and browser data and aligns with broader goal of raising money for regime

Shreyas Reddy March 31, 2023

North Korean hackers targeting phone conferencing software, security firm says

Representation of hackers gaining access to a system | Image: Fort George G. Meade Public Affairs Office Flickr - CC BY 2.0 (March 25, 2018)

A U.S. cybersecurity firm has attributed a recent attack on a popular business communications tool to a North Korean hacker network associated with the Lazarus Group.

CrowdStrike said it observed malicious activity originating from 3CXDesktopApp, a voice and video conferencing software product developed by virtual phone service company 3CX, in a post on its website Wednesday.

This malicious activity reportedly included “beaconing” to infrastructure controlled by the threat actor, deployment of additional payloads, and in some cases, remote activity carried out directly by attackers already inside the target’s operating environment.

CrowdStrike

North Korean hackers targeting phone conferencing software, security firm says

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy