The incident responders investigating how hackers carried out a complex supply-chain attack targeting enterprise phone provider 3CX say the company was compromised by another supply chain attack.

COMPANY NEWS: Mandiant today announced the launch of its digital risk protection solution that harnesses the power of the Mandiant Advantage multi-vendor XDR platform to enable an intelligence-led ...

Mandiant believes, based on a digital signature on the corrupted X_Trader malware, that Trading Technologies' supply chain compromise occurred before November 2021, but that the 3CX follow-on ...

In fact, when the initial infection vector was identified, supply chain compromise accounted for 17% of intrusions investigated by Mandiant in 2021, compared to less than 1% in 2020. Further, new data ...

according to Mandiant. “This is the first time that we’ve ever found concrete evidence of a supply chain attack leading to another supply chain attack,” Carmakal told reporters Wednesday.

“This is the first time Mandiant has seen a software supply chain attack lead to another software supply chain attack,” reads the April 20 Mandiant report. Mandiant found the earliest evidence ...

Mandiant has attributed the 3CX supply chain compromise with “high confidence” to a threat actor in North Korea, a 3CX executive said in a post Tuesday. The disclosure appears to confirm an ...

Links to Operation AppleJeus Mandiant says UNC4736 is related to the financially motivated North Korean Lazarus Group behind Operation AppleJeus [1, 2, 3], which was also linked by Google's Threat ...

In fact, when the initial infection vector was identified, supply chain compromise accounted for 17% of intrusions investigated by Mandiant in 2021, compared to less than 1% in 2020. Further ...