Group-IB researchers have also identified a previously unknown command and control infrastructure and a PowerShell script that APT group MuddyWater is using for its cyberespionage and IP theft attacks.
An earlier supply chain attack led to the 3CX compromise theregister.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from theregister.com Daily Mail and Mail on Sunday newspapers.
An employee who downloaded an infected application onto their own PC is being blamed for last month’s compromise of the 3CX VoIP desktop client. In a report issued today, 3CX said the results of an investigation by Mandiant showed the incident started last year, when a 3CX employee downloaded and installed an infected version of
Symantec has been tracking a new intelligence-gathering campaign led by a group they’ve named Hydrochasma that has been targeting medical labs and shipping companies in Asia.