Linux Malware Strengthens Links Between Lazarus APT and the 3CX Supply Chain Attack

21 April 2023
Researchers were able to reconstruct the full chain, from the ZIP file that delivers a fake HSBC job offer as a decoy, up until the final payload: the SimplexTea Linux backdoor distributed through an OpenDrive cloud storage account.