3CX

3CX DesktopApp Security Alert

2023-03-31

Adam Thick

ITS were regretfully, officially, informed yesterday that a recent 3CX Desktop Application Update for Windows and Mac includes a security issue. ITS Anti Virus Vendor - SentinelOne - first flagged this on Sunday night and in many cases uninstalled it.

The origin of the issue has been reported as a Supply Chain Attack which appears to be a library built into the Desktop Application. Our vendor, 3CX, continues to research the matter and has appointed cyber security specialists to review the incident in full.

The impact to ITS phone clients is the affected application was able to propagate between late Tuesday afternoon and midday Thursday producing a window of roughly 40 hours. ITS have identified a small subset of our clients who received the updated software which we have since remediated.

The affected application made requests to certain URL’s which have been disabled. The host of the affected library software in the Desktop Application has been disabled. The impacted applications have been identified and removed from clients desktops and a new version is now available which we are deploying to affected client devices.

ITS will be contacting impacted clients individually to discuss further action.

The initial Alert can be found here - https://www.3cx.com/blog/news/desktopapp-security-alert/

Please contact IT Strategic to discuss this matter in more detail or if you have any questions.