Russian cybersecurity firm Kaspersky has reported a second-stage implant used by a hacking group to attack cryptocurrency companies through a supply chain attack on 3CX.
The backdoor, named Gopuram, connects to a command-and-control server and awaits further instructions to interact with victims' file systems, create processes, and launch in-memory modules.
Give a Pawfive to this post!
Share with your friends and followers
Start writing about what excites you in tech — connect with developers, grow your voice, and get rewarded.
Join other developers and claim your FAUN.dev() account now!
