lazarusholic

Everyday is lazarus.dayβ

#3CXDesktopApp

Vulnerability/Target

Reports

2025-07-03
ReversingLabs
3CX’s Software Supply Chain Compromise: Lessons Learned
#3CXDesktopApp #Lazarus
2025-02-03
SystemWeakness
[CyberDefenders Write-up] 3CX Supply Chain
#3CXDesktopApp
2025-01-08
Tay
That's a lot of Single Points of Failure
#3CXDesktopApp #Hyperliquid #Lazarus #RadiantCapital
2023-11-23
KRNCSC
ROK-UK Joint Cyber Security Advisory(DPRK S/W supply chain attacks)
#3CXDesktopApp #News #MagicLine4NX
2023-10-26
ReversingLabs
3cx: lessons learned
#3CXDesktopApp #Youtube
2023-10-26
Microsoft
State-Sponsored Financially Motivated Attacks
#CitrineSleet #Cryptocurrency #Slides #3CXDesktopApp
2023-10-05
Objective-see
Mac-ing sense of the 3CX supply chain attack: analysis of the macOS payloads
#3CXDesktopApp
2023-10-04
ESET
LAZARUS CAMPAIGNS AND BACKDOORS IN 2022-23
#DreamJob #3CXDesktopApp #CrossWebEX #Inception #DangerousPassword #VeraPort #MagicLine4NX
2023-09-27
Jamf
Analyzing state-sponsored malware on macOS
#JokerSpy #macOS #3CXDesktopApp #JumpCloud #RustBucket
2023-08-30
Kaspersky
IT threat evolution Q2 2023
#3CXDesktopApp #Trend #Andariel #DeathNote
2023-08-10
Objective-see
Mac-ing Sense of the 3CX Supply Chain Attack: Analysis of the macOS Payloads
#3CXDesktopApp #Slides #SmoothOperator
2023-06-29
UKNCSC
Smooth Operator
#SmoothOperator #3CXDesktopApp
2023-05-02
Avertium
Lazarus and the 3CX Double Software Supply Chain Attack
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-28
Ahnlab
EDR을 활용한 3CX 공급망 침해 사고 추적
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-24
Sangfor
疑似3CX供应链攻击组织相关联的Linux样本分析
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-22
KimZetter
Updates and Timeline for 3CX and X_Trader Hacks
#SupplyChain #3CXDesktopApp #SmoothOperator #X_Trader
2023-04-21
Symantec
X_Trader Supply Chain Attack Affects Critical Infrastructure Organizations in U.S. and Europe
#SupplyChain #3CXDesktopApp #SmoothOperator #X_Trader
2023-04-20
Krebsonsecurity
3CX Breach Was a Double Supply Chain Compromise
#SupplyChain #3CXDesktopApp #SmoothOperator #X_Trader
2023-04-20
USCISA
MAR-10435108-1.v1 ICONICSTEALER
#SupplyChain #3CXDesktopApp #SmoothOperator #ICONICSTEALER
2023-04-20
3CX
Mandiant Security Update – Initial Intrusion Vector
#SupplyChain #3CXDesktopApp #SmoothOperator #UNC4736 #X_Trader
2023-04-20
Mandiant
3CX Software Supply Chain Compromise Initiated by a Prior Software Supply Chain Compromise; Suspected North Korean Actor Responsible
#SupplyChain #UNC4736 #YARA #3CXDesktopApp #SmoothOperator #X_Trader #UNC4469 #UNC3782
2023-04-20
ESET
Linux malware strengthens links between Lazarus and the 3CX supply‑chain attack
#3CXDesktopApp #SmoothOperator #YARA #DreamJob
2023-04-14
AttackIQ
Response to Lazarus' 3CX Supply Chain Compromise
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-11
3CX
Security Update Mandiant Initial Results
#SupplyChain #YARA #UNC4736 #TAXHAUL #3CXDesktopApp #SmoothOperator
2023-04-05
struppigel
3CX SmoothOperator Authenticode Abuse
#SupplyChain #3CXDesktopApp #SmoothOperator #Youtube
2023-04-05
Ahnlab
3CX DesktopApp 공급망 공격, 국내에서도 확인
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-03
struppigel
3CX SmoothOperator ffmpeg.dll with Binary Ninja
#SupplyChain #3CXDesktopApp #SmoothOperator #Youtube
2023-04-03
Kaspersky
Not just an infostealer: Gopuram backdoor deployed through 3CX supply chain attack
#SmoothOperator #SupplyChain #3CXDesktopApp #Gopuram
2023-04-03
ThreatRadar
3CX In The Wild
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-03
HivePro
SmoothOperator Campaign Trojanizes 3CXDesktopApp
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-03
piyokango
3CXのソフトウエア改ざんによるサプライチェーン攻撃についてまとめてみた
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-04-01
Objective-see
Ironing out (the macOS) details of a Smooth Operator (Part II)
#SupplyChain #3CXDesktopApp #SmoothOperator #macOS
2023-03-31
Emanueledelucia
Understanding the magnitude of the 3CXDesktopApp phenomenon
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-31
Splunk
Splunk Insights: Investigating the 3CXDesktopApp Supply Chain Compromise
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-31
Group-IB
36gate: supply chain attack
#SmoothOperator #SupplyChain #3CXDesktopApp #36gate
2023-03-31
Cyble
A Comprehensive Analysis of the 3CX Attack
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
ReversingLabs
Red flags flew over software supply chain-compromised 3CX update
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
TrendMicro
Information on Attacks Involving 3CX Desktop App
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
OpenAnalysis
3CX Supply Chain Attack
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
Fortinet
3CX Desktop App Compromised (CVE-2023-29059)
#SupplyChain #3CXDesktopApp #SmoothOperator #CVE-2023-29059
2023-03-30
Rapid7
Backdoored 3CXDesktopApp Installer Used in Active Threat Campaign
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
PaloaltoNetworks
Threat Brief: 3CXDesktopApp Supply Chain Attack
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
CiscoTalos
Threat Advisory: 3CX Softphone Supply Chain Compromise
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
3CX
3CX DesktopApp Security Alert
#SupplyChain #News #SmoothOperator #3CXDesktopApp
2023-03-30
Elastic
Elastic users protected from SUDDENICON’s supply chain attack
#SUDDENICON #SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
Volexity
3CX Supply Chain Compromise Leads to ICONIC Incident
#SupplyChain #3CXDesktopApp #SmoothOperator #ICONIC #UTA0040
2023-03-30
NextronSystems
YARA rule set related to the 3CX incident
#SupplyChain #3CXDesktopApp #SmoothOperator #YARA
2023-03-30
Todyl
Threat Advisory: 3CX Softphone Telephony Campaign
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-30
Huntress
3CX VoIP Software Compromise & Supply Chain Threats
#SupplyChain #3CXDesktopApp #SmoothOperator #YARA
2023-03-30
Symantec
3CX: Supply Chain Attack Affects Thousands of Users Worldwide
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-29
Checkpoint
3CXDesktop App Supply Chain Attack - Check Point Software
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-29
Objective-see
Ironing out (the macOS details) of a Smooth Operator
#SupplyChain #3CXDesktopApp #SmoothOperator #macOS
2023-03-29
Sophos
3CX users under DLL-sideloading attack: What you need to know
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-29
SentinelOne
SmoothOperator | Ongoing Campaign Trojanizes 3CXDesktopApp in Supply Chain Attack
#SupplyChain #3CXDesktopApp #SmoothOperator
2023-03-29
CrowdStrike
CrowdStrike Prevents 3CXDesktopApp Intrusion Campaign
#LabyrinthChollima #3CXDesktopApp #SupplyChain #SmoothOperator