3CX Incident Attributed to North Korea; New LockBit MacOS Sample
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 8aebb535-c54b-4452-a6ac-74a4fb974f76 |
| Fingerprint | 92bec951d426d64a |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | May 4, 2023, midnight |
| Added to db | June 5, 2023, 10:13 a.m. |
| Last updated | Nov. 17, 2024, 5:57 p.m. |
| Headline | 3CX Incident Attributed to North Korea; New LockBit MacOS Sample |
| Title | 3CX Incident Attributed to North Korea; New LockBit MacOS Sample |
| Detected Hints/Tags/Attributes | 85/2/15 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 32 | ✔ | EclecticIQ Blog | https://blog.eclecticiq.com/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 73 | cve-2023-28252 |
|
| Details | Domain | 49 | eclecticiq.com |
|
| Details | Domain | 20 | www.3cx.com |
|
| Details | Domain | 57 | crowdstrike.com |
|
| Details | Domain | 403 | securelist.com |
|
| Details | Domain | 1373 | twitter.com |
|
| Details | Domain | 469 | www.cisa.gov |
|
| Details | 47 | research@eclecticiq.com |
||
| Details | Mandiant Uncategorized Groups | 59 | UNC4736 |
|
| Details | Url | 2 | https://www.3cx.com/blog/news/mandiant-initial-results |
|
| Details | Url | 4 | https://www.crowdstrike.com/blog/crowdstrike-detects-and-prevents-active-intrusion-campaign-targeting-3cxdesktopapp-customers |
|
| Details | Url | 6 | https://securelist.com/gopuram-backdoor-deployed-through-3cx-supply-chain-attack/109344 |
|
| Details | Url | 4 | https://securelist.com/nokoyawa-ransomware-attacks-with-windows-zero-day/109483 |
|
| Details | Url | 2 | https://twitter.com/malwrhunterteam/status/1647384505550876675 |
|
| Details | Url | 2 | https://www.cisa.gov/resources-tools/resources/secure-by-design-and-default |