May 4, 2023

Solutions Review: Software Supply Chain Security Is Going Mainstream in 2023. Here’s How.

As part of Solutions Review’s Expert Insights Series—a collection of contributed articles written by industry experts in enterprise software categories—Tomislav Peričin, the co-founder and Chief Software Architect at ReversingLabs, outlines some of the reasons software supply chain security is going “mainstream” in 2023.  
April 7, 2023

IT Pro: Lazarus blamed for 3CX attack as byte-to-byte code match discovered

Security researchers from ReversingLabs found that 3CX had missed signs that its client had been tampered with before releasing an update.
April 7, 2023

IT World Canada: Admins urged to uninstall 3CX VoIP desktop app until patch issued after supply chain attack

According to ReversingLabs, attackers appended RC4 encrypted shellcode into the signature appendix of d3dcompiler.dll, a standard library used with OpenJS Electron applications such as 3CXDesktopApp.
April 7, 2023

SecurityWeek: Mandiant Investigating 3CX Hack as Evidence Shows Attackers Had Access for Months

Several cybersecurity companies have published blog posts, advisories and tools to help organizations that may have been hit by the 3CX supply chain attack
April 7, 2023

The Hacker News: 3CX Supply Chain Attack — Here's What We Know So Far

Enterprise communications software maker 3CX on Thursday confirmed that multiple versions of its desktop app for Windows and macOS are affected by a supply chain attack.
March 15, 2023

Beta News: New platform helps uncover vulnerable secrets

Supply chain security company ReversingLabs is launching a new secrets detection feature within its Software Supply Chain Security (SSCS) platform.