Black Hat | Mac-ing Sense of the 3CX Supply Chain Attack: Analysis of the macOS Payloads @BlackHatOfficialYT | Uploaded 8 months ago | Updated 1 hour ago
Supply chain attacks are some of the most damaging cybersecurity incidents, capable of infecting a massive number of unsuspecting users and companies through widely used and trusted software. And although the majority of such attacks impact Windows-based computers, the recent nation-state attack against the popular PBX software provider 3CX, was also capable of infecting macOS systems.
Believed to be the first "chained" supply chain attack (where initial access to 3CX was gained via a separate supply chain attack), this talk will focus on its macOS payloads....
By: Patrick Wardle
Full Abstract and Presentation Materials: blackhat.com/us-23/briefings/schedule/#mac-ing-sense-of-the-cx-supply-chain-attack-analysis-of-the-macos-payloads-32498
Supply chain attacks are some of the most damaging cybersecurity incidents, capable of infecting a massive number of unsuspecting users and companies through widely used and trusted software. And although the majority of such attacks impact Windows-based computers, the recent nation-state attack against the popular PBX software provider 3CX, was also capable of infecting macOS systems.
Believed to be the first "chained" supply chain attack (where initial access to 3CX was gained via a separate supply chain attack), this talk will focus on its macOS payloads....
By: Patrick Wardle
Full Abstract and Presentation Materials: blackhat.com/us-23/briefings/schedule/#mac-ing-sense-of-the-cx-supply-chain-attack-analysis-of-the-macos-payloads-32498
