CrowdStrike is alerting users of a supply chain attack involving the Canadian company Comm100, which makes customer engagement software.
From at least September 27 until September 29, 2022, a trojanized Comm100 Live Chat installer distributed through the company’s website was signed with a legitimate Comm100 Network Corporation certificate on September 26 as part of the attack. The supplier asserts to have more than 15,000 clients spread across 51 nations.
The attackers injected a JavaScript backdoor into the Comm100 installer, an Electron application, in the main.js file of the embedded archive. The backdoor retrieves and runs a second-stage script from an external resource when it is activated.
Read More: Supply Chain Attack Targets Customer Engagement Firm Comm100
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
