Andy Greenberg / Wired:
Mandiant says the North Korea-linked hack of VoIP company 3CX’s customers is the first confirmed incident of one software-supply-chain attack enabling another — The mass compromise of the VoIP firm’s customers is the first confirmed incident where one software supply chain attack enabled another, researchers say.
Brought to you by USA Today Read the rest of the article here.