Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the wp-plugin-hostgator domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the ol-scrapes domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893
{"id":29682,"date":"2023-04-20T22:11:05","date_gmt":"2023-04-20T22:11:05","guid":{"rendered":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/"},"modified":"2023-04-20T22:11:06","modified_gmt":"2023-04-20T22:11:06","slug":"3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack","status":"publish","type":"post","link":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/","title":{"rendered":"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack"},"content":{"rendered":"

Source:https:\/\/techcrunch.com\/2023\/04\/20\/3cx-supply-chain-xtrader-mandiant\/<\/a><\/br>
\n3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack<\/br>
\n2023-04-20 22:11:05<\/br><\/p>\n

\n
\n\t\t\t\n\t\t<\/div>\n<\/p><\/div>\n
\n

The incident responders investigating how hackers carried out a complex supply-chain attack targeting enterprise phone provider 3CX say the company was compromised by\u00a0another<\/em> supply chain attack.<\/p>\n

3CX, which develops a software-based phone system<\/a> used by more than 600,000 organizations worldwide with more than 12 million active daily users, worked with cybersecurity company Mandiant to investigate the incident. In its report released on Thursday, Mandiant said that attackers compromised 3CX using a malware-laced version of the X_Trader financial software, developed by Trading Technologies.<\/p>\n

X_Trader was a platform used by traders to view real-time and historical markets, which Trading Technologies phased out in 2020, but Mandiant says was still available to download from the company\u2019s website in 2022.<\/p>\n

Mandiant said it suspects the Trading Technologies website was compromised by a group of North Korea state-backed hackers, which it refers to as UNC4736.<\/p>\n

This is backed up by a report from<\/a> Google\u2019s Threat Analysis Group from last year, which confirmed that Trading Technologies\u2019 website was compromised in February 2022 as part of a North Korean operation targeting dozens of cryptocurrency and fintech users. U.S. cybersecurity agency CISA says<\/a> the hacking group has used its custom \u201cAppleJeus\u201d malware to steal cryptocurrency from victims in over 30 countries.<\/p>\n

Mandiant\u2019s investigation found that a 3CX employee downloaded a tainted version of the X_Trader software in April 2022 from Trading Technologies\u2019 website, which the hackers had digitally signed with the company\u2019s then-valid code-signing certificate to make it look as if it was legitimate.<\/p>\n

Once installed, the software planted a backdoor on the employee\u2019s device, giving the attackers full access to the compromised system. This access was then used to move laterally through 3CX\u2019s network and, eventually, to compromise 3CX\u2019s flagship desktop phone app to plant information-stealing malware inside their customers\u2019 corporate networks.<\/p>\n

\u201cThis is notable to us because this is the first time we\u2019ve ever found concrete evidence of a software supply chain attack leading to another supply chain attack,\u201d said Mandiant\u2019s chief technology officer Charles Carmakal. \u201cThis series of coupled supply-chain attacks just illustrates the increasing cyber offensive cyber capability by North Korean threat actors.\u201d<\/p>\n

Mandiant says it notified Trading Technologies about the compromise on April 11 but says it\u2019s not known how many users are affected.<\/p>\n

Trading Technologies spokesperson Ellen Resnick told TechCrunch that the company has not yet verified Mandiant\u2019s findings, and reiterated that it stopped supporting the software in 2020.<\/p>\n

Mandiant\u2019s Carmakel added that it\u2019s likely \u201cmany more victims\u201d related to the two supply-chain attacks will become known in the coming weeks and months.<\/p>\n<\/p><\/div>\n

<\/br><\/br><\/br><\/p>\n

Science, Tech, Technology<\/br>
\n<\/br>
\nSource:https:\/\/techcrunch.com\/2023\/04\/20\/3cx-supply-chain-xtrader-mandiant\/<\/a><\/br><\/br><\/p>\n","protected":false},"excerpt":{"rendered":"

Source:https:\/\/techcrunch.com\/2023\/04\/20\/3cx-supply-chain-xtrader-mandiant\/ 3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack 2023-04-20 22:11:05 The incident responders investigating how hackers carried out a complex supply-chain attack targeting enterprise phone provider 3CX say the company was compromised by\u00a0another supply chain attack. 3CX, which develops a software-based phone system used by more than 600,000 organizations worldwide with […]<\/p>\n","protected":false},"author":1,"featured_media":29683,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","om_disable_all_campaigns":false,"pagelayer_contact_templates":[],"_pagelayer_content":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[26,17,8],"tags":[],"class_list":["post-29682","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-science","category-tech","category-technology"],"yoast_head":"\n3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack - Science and Nerds<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack - Science and Nerds\" \/>\n<meta property=\"og:description\" content=\"Source:https:\/\/techcrunch.com\/2023\/04\/20\/3cx-supply-chain-xtrader-mandiant\/ 3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack 2023-04-20 22:11:05 The incident responders investigating how hackers carried out a complex supply-chain attack targeting enterprise phone provider 3CX say the company was compromised by\u00a0another supply chain attack. 3CX, which develops a software-based phone system used by more than 600,000 organizations worldwide with […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/\" \/>\n<meta property=\"og:site_name\" content=\"Science and Nerds\" \/>\n<meta property=\"article:published_time\" content=\"2023-04-20T22:11:05+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-04-20T22:11:06+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"622\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/\",\"url\":\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/\",\"name\":\"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack - Science and Nerds\",\"isPartOf\":{\"@id\":\"https:\/\/scienceandnerds.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg?fit=622%2C400&ssl=1\",\"datePublished\":\"2023-04-20T22:11:05+00:00\",\"dateModified\":\"2023-04-20T22:11:06+00:00\",\"author\":{\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\"},\"breadcrumb\":{\"@id\":\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg?fit=622%2C400&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg?fit=622%2C400&ssl=1\",\"width\":622,\"height\":400},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/scienceandnerds.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/scienceandnerds.com\/#website\",\"url\":\"https:\/\/scienceandnerds.com\/\",\"name\":\"Science and Nerds\",\"description\":\"My WordPress Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/scienceandnerds.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"caption\":\"admin\"},\"sameAs\":[\"https:\/\/scienceandnerds.com\"],\"url\":\"https:\/\/scienceandnerds.com\/author\/admin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack - Science and Nerds","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/","og_locale":"en_US","og_type":"article","og_title":"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack - Science and Nerds","og_description":"Source:https:\/\/techcrunch.com\/2023\/04\/20\/3cx-supply-chain-xtrader-mandiant\/ 3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack 2023-04-20 22:11:05 The incident responders investigating how hackers carried out a complex supply-chain attack targeting enterprise phone provider 3CX say the company was compromised by\u00a0another supply chain attack. 3CX, which develops a software-based phone system used by more than 600,000 organizations worldwide with […]","og_url":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/","og_site_name":"Science and Nerds","article_published_time":"2023-04-20T22:11:05+00:00","article_modified_time":"2023-04-20T22:11:06+00:00","og_image":[{"width":622,"height":400,"url":"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"admin","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/","url":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/","name":"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack - Science and Nerds","isPartOf":{"@id":"https:\/\/scienceandnerds.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#primaryimage"},"image":{"@id":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg?fit=622%2C400&ssl=1","datePublished":"2023-04-20T22:11:05+00:00","dateModified":"2023-04-20T22:11:06+00:00","author":{"@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e"},"breadcrumb":{"@id":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#primaryimage","url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg?fit=622%2C400&ssl=1","contentUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg?fit=622%2C400&ssl=1","width":622,"height":400},{"@type":"BreadcrumbList","@id":"https:\/\/scienceandnerds.com\/2023\/04\/20\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/scienceandnerds.com\/"},{"@type":"ListItem","position":2,"name":"3CX\u2019s supply chain attack was caused by\u2026 another supply chain attack"}]},{"@type":"WebSite","@id":"https:\/\/scienceandnerds.com\/#website","url":"https:\/\/scienceandnerds.com\/","name":"Science and Nerds","description":"My WordPress Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/scienceandnerds.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e","name":"admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","caption":"admin"},"sameAs":["https:\/\/scienceandnerds.com"],"url":"https:\/\/scienceandnerds.com\/author\/admin\/"}]}},"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2023\/04\/3cxs-supply-chain-attack-was-caused-by-another-supply-chain-attack_6441b87a1812a.jpeg?fit=622%2C400&ssl=1","_links":{"self":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/29682","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/comments?post=29682"}],"version-history":[{"count":1,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/29682\/revisions"}],"predecessor-version":[{"id":29684,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/29682\/revisions\/29684"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media\/29683"}],"wp:attachment":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media?parent=29682"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/categories?post=29682"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/tags?post=29682"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}