N.K. Hackers Employ Matryoshka Doll-Style Cascading Supply Chain Attack on 3CX
Tags
cmtmf-attack-pattern: Supply Chain Compromise
country: North Korea
maec-delivery-vectors: Watering Hole
attack-pattern: Data Credentials - T1589.001 Dll Side-Loading - T1574.002 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Supply Chain Compromise - T1474 Dll Side-Loading - T1073 Supply Chain Compromise - T1195 Supply Chain Compromise
Show in Graph
Common Information
Type Value
UUID b463bd84-a078-4980-82d9-05ccf1c09f22
Fingerprint e12e9d554c1f0ea3
Analysis status DONE
Considered CTI value 1
Text language
Published April 21, 2023, 3:25 p.m.
Added to db April 21, 2023, 1:15 p.m.
Last updated Oct. 16, 2024, 2:06 a.m.
Headline N.K. Hackers Employ Matryoshka Doll-Style Cascading Supply Chain Attack on 3CX
Title N.K. Hackers Employ Matryoshka Doll-Style Cascading Supply Chain Attack on 3CX
Detected Hints/Tags/Attributes 60/4/4
Source URLs
Redirection Url
Details Source https://thehackernews.com/2023/04/nk-hackers-employ-matryoshka-doll-style.html
Details Source https://thehackernews.com/2023/04/nk-hackers-employ-matryoshka-doll-style.html?&web_view=true
URL Provider
Details Provider Source level domain
Details thehackernews.com thehackernews.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 99 Cyware News - Latest Cyber News https://cyware.com/allnews/feed 2024-08-30 22:08
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 22 
cve-2022-0609
Details Domain 41 
journalide.org
Details Domain 4 
www.tradingtechnologies.com
Details Mandiant Uncategorized Groups 59 
UNC4736