Symantec has written a blog discussing the X_Trader software supply chain attack that impacted critical infrastructure organizations in the United States and Europe, including the energy and financial sectors. X_Trader, developed by Trading Technologies, is typically used for futures trading but a North Korean threat group has been linked to malicious versions utilized to deploy a multi-stage modular backdoor onto victims' systems. X_Trader was used to enable the 3CX supply chain compromise last month and represents a notable development of threat actors in cascading vulnerabilities together across the supply chain ecosystem. Read more at Symantec.