Mandiant's Investigation of the 3CX Supply Chain Attack Has Found the Patient Zero for the Hacking Operation

3CX was one of an untold number of victims infected with the corrupted software of another company. Mandiant says hackers somehow managed to slip backdoor code into an application available on trading technologies website known as Xtrader. This is the first time we've ever found concrete evidence of aSoftware supply chain attack leading to another software supply chain attack, says Mandiant Chief Technology Officer Charles Carmackel.