Some Windows and MacOS versions of the application have been abused by the threat actor to add an installer that communicates with various command-and-control (C2) servers. The affected software is 3CX – a legitimate software-based PBX phone system available on Windows, MacOS, Linux, Android, and iOS. Overview We will update this page as events and understanding develop, including our threat and detection guidance.
This page provides an overview of the situation, a threat analysis, information for hunters, and information on detection protection. Sophos X-Ops is tracking a developing situation concerning a seeming supply-chain attack, possibly undertaken by a nation-state-related group.
0 kommentar(er)
