Skip to content

North Korea Hacking Cryptocurrency Sites with 3CX Exploit

It has been reported that North Korea has been targeting cryptocurrency sites with a 3CX exploit. Researchers at Russian cybersecurity firm Kaspersky recently revealed that they identified a small number of cryptocurrency-focused firms as victims of the 3CX software supply-chain attack. This attack has been going on for a week at least. The hackers are said to have compromised the 3CX installer software which is used by 600,000 organizations worldwide.

Kaspersky has reported that the hackers have combed through the infected machines to target fewer than 10 machines with “surgical precision”. The hackers are said to be focusing on cryptocurrency firms. Security firms CrowdStrike and SentinelOne were the first to identify North Korea as the culprits.

The 3CX exploit is a type of supply-chain attack. Supply-chain attacks are a type of cyberattack where the hackers compromise a software update of a legitimate product in order to gain access to the target’s systems. This type of attack is used to exploit security vulnerabilities in the software or hardware that is being installed.

The 3CX exploit is a serious threat to cryptocurrency firms. It is important for these firms to be aware of the threat and take the necessary steps to protect their systems. They should make sure their systems are up-to-date and are using the latest security patches.

In conclusion, cryptocurrency firms need to be aware of the threat posed by the 3CX exploit. North Korea has been targeting cryptocurrency firms with this exploit and it is important for these firms to take the necessary steps to protect their systems.

KEY POINTS:
• North Korea has been targeting cryptocurrency sites with a 3CX exploit
• Security firms CrowdStrike and SentinelOne identified North Korea as the culprits
• 3CX exploit is a type of supply-chain attack
• It is important for cryptocurrency firms to be aware of the threat and take the necessary steps to protect their systems

Leave a Reply

Your email address will not be published. Required fields are marked *