This incident has been monitored for 6 months. The PWA app and desktop versions have been passed as safe since June 2023. Version 20 is pending release and incorporates a full re-write of the desktop app and native Windows Store app.
Posted Oct 10, 2023 - 22:28 AEDT
Monitoring
We can confirm that all 3CX tenants managed by Compusult have had the emergency 3CX Desktop App version updated.
We are also monitoring for activity on our following solutions: - SentinelOne EDR (Compromised versions are automatically being removed) - PBX Monitor (our 3CX monitoring platform - detecting users still using affected versions)
For clients not using our EDR solution, we have initiated a Full Network scan of your devices in order to detect the presence of the affected versions / files.
Important Note: If your 3CX tenant is not managed by Compusult, you will need to check with your relevant provider to ensure that any appropriate actions have been taken.
There are no additional end user actions required at this stage.
This case will be updated once further relevant information is known.
Posted Mar 31, 2023 - 12:01 AEDT
Identified
3CX have released a patched version of the 3CX Desktop App. This update has been deployed to all of our hosted 3CX instances overnight.
It is important to note that the update to your 3CX Cloud Phone server does not automatically update the 3CX Desktop App on your computer.
It has been confirmed by 3CX that the latest version of the 3CX Desktop App contains a component that has been compromised during development.
This component is a third party component used by 3CX, and it has been verified by a number of antivirus vendors and confirmed by 3CX to contain some malicious code.