Krebs on Security

3CX Breach Was a Double Supply Chain Compromise

In late March 2023, 3CX disclosed that its desktop applications for both Windows and macOS were compromised with malicious code that gave attackers the ability to download and run code on all machines ...
Business Insider

3CX Announces Scalable, Cost-Effective Communication Solutions That Drive Enterprise Growth

3CX, an award-winning leader in enterprise communication, is excited to announce its scalable, cost-effective communication solutions that drive enterprise growth by helping businesses scale, improve ...
Bleeping Computer

Hackers compromise 3CX desktop app in a supply chain attack

A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company’s customers in an ongoing supply chain attack.
CSOonline

3CX hack highlights risk of cascading software supply-chain compromises

The attack that injected malicious code into the company's software appears to have been enabled by another compromised application. At the end of March, an international VoIP software company called ...
Computer Weekly

3CX incident may be world’s first double supply chain attack

Google Cloud’s Mandiant says it has observed what appears to be the first ever instance of a double software supply chain attack, after uncovering evidence that suggests that the widespread 3CX ...