Hacked videoconferencing firm 3CX says North Korea behind massive intrusion
Company cites researchers’ ‘high confidence’ that DPRK target MacOS and Windows with malware and took control of devices
North Korea was very likely behind the massive breach of virtual phone service company 3CX, the company has confirmed.
In a report released Tuesday, the company’s chief information security officer Pierre Jourdan stated that cybersecurity firm Mandiant, which had been tasked with investigating the intrusion, assessed with “high confidence” that the so-called supply chain attack was linked to the DPRK.
The attackers infected the company’s systems with a piece of malware named TAXHAUL, which installs a component referred to as COLDCAT used to download additional malware on systems running Microsoft Windows, according to
- 01North Korea hints beach resort twice as long as Waikiki may finally open soon
- 02State media review: North Korea slams US ‘air pirates’ for raising risk of war
- 03What North Korea’s official budget reveals about its spending priorities in 2024
- 04How North Korean aggression and the Taiwan election complicate China-DPRK ties
- 05Satellite imagery shows Kim Jong Un’s east coast yacht, missile test activities
- 06State media review: North Korean festivals build up to former leader’s birthday
- 07Survey shows markets reign supreme in the daily lives of North Koreans
- 08What to make of North Korea’s apparent interest in naval nuclear propulsion