Electron is an open source project that enables web developers to create desktop applications. On the 3CX forums, users are being told that only the new version (3CX Desktop App) leads to the malware infection, because the 3CX Phone for Windows (the legacy version) is not based on the Electron Framework. While it is almost certain that Windows Electron clients are affected, there is no evidence so far that any other platforms are. It is likely the attacks have been ongoing since one of the shared samples was digitally signed on March 3, 2023, with a legitimate 3CX Ltd certificate issued by DigiCert. While attribution in these cases is always difficult, some fingers are pointing to North Korea. The discovered attack is very complex and probably has been going on for months. ![]() The 3CX website boasts 600,000 customer companies with 12 million daily users, which might give you an idea of the possible impact a supply chain attack could have. 3CX is a Private Branch Exchange (PBX) system, which is basically a private telephone network used within a company or organization. Many large corporations use it internally to make calls, view the status of colleagues, chat, host web conferences, and for voicemail. The 3CX Desktop App is a Voice over Internet Protocol (VoIP) type of application which is available for Windows, macOS, Linux and mobile. ![]() ![]() Researchers have found that the 3CX desktop app may be compromised and used in supply chain attacks.
0 Comments
Leave a Reply. |