In what is being described as the largest supply chain attack the cyber security world has seen in years, Windows and Mac applications used by 3CX users have been found to have been ‘Trojanized’. The attack, which began in the first week of November 2020, was discovered by researchers from Kaspersky, who are currently investigating the incident in conjunction with 3CX itself.
Despite the enormity of the attack and its implications, the underlying goal of the hackers remains unclear. It is suspected that the malicious code embedded into the 3CX apps was meant to either expose sensitive information, or even hijack the software as part of a larger attack campaign.
The Trojanized Windows and Mac apps were discovered when 3CX users experienced difficulties with their software. Upon investigation, it was revealed that malicious code had been inserted into the apps, subsequently infecting the computers of the users. It is not yet known how many users of 3CX have been affected by the attack.
Although the exact method used to inject the malicious code into the 3CX apps is still unclear, it is suspected that the attackers had gained access to the application’s supply chain. This means that, once injected, the malicious code was able to remain undetected in the app as it was delivered to users via legitimate channels – potentially impacting a large number of people.
The attack on the 3CX apps is a stark reminder of the risk of supply chain attacks. As a result, organizations should take steps to secure their applications and secure their supply chains. This includes conducting regular security assessments, using secure development processes, and keeping their software up to date.
Despite the seriousness of the attack, users should remain vigilant, as the nefarious goals of the attackers remain unknown. As such, users should ensure they are running the latest version of the 3CX apps, as they may contain security updates that address the malicious code. In addition, users should keep their systems up to date with the latest security and anti-malware software.
The attack on the 3CX apps serves as an important reminder of the importance of supply chain security, and the dangers of malicious code hiding in otherwise legitimate software. Organizations should remain vigilant and take steps to secure their apps and protect their users, lest they become the next victims of a supply chain attack.
Hey Subscribe to our newsletter for more articles like this directly to your email.