![]() ![]() The CEO and CISO for 3CX urged network defenders to immediately uninstall the desktop client. ![]() “We’re still researching the matter to be able to provide a more in depth response later today.” “The issue appears to be one of the bundled libraries that we compiled into the Windows Electron App via GIT,” he continued. “Anti-virus vendors have flagged the executable 3CXDesktopApp.exe and in many cases uninstalled it.” “We regret to inform our partners and customers that our Electron Windows App shipped in Update 7… includes a security issue,” 3CX CISO Pierre Jourdan said in a statement. An ongoing supply chain attack has led to the compromise of 3CX VoIP software installations, leading to the installation of trojanized malware onto the 3CX desktop app to deploy further malicious activities on clients leveraging the vulnerable app. ![]()
0 Comments
Leave a Reply. |