In recent weeks, users of the popular 3CX VoIP phone system have been hit by a massive supply chain attack which has seen a “rain” of Trojanized Windows and Mac apps coming their way. This attack, which has been attributed to an unknown assailant, has resulted in a significant security breach for many users of the well-known VoIP software.
The incident began when users reported that they were being contacted with automatic software updates which they had not requested. Upon installation, these updates contained malicious code specifically designed to give an unknown third-party access to user data and systems. By installing these “Trojanize” applications, users have inadvertently granted an unknown entity the ability to access their networks and gain potential access to sensitive information. It is also likely that the threat actors responsible for this incident are actively seeking to expand their control by searching for additional vulnerabilities in the affected systems.
The attack highlights the importance of sound security practices and vigilance when granting access to software updates. While the attackers are still at large, the supply chain attack has prompted 3CX to issue an alert to its users to cease any software downloads until the malicious code can be identified and removed. 3CX is reportedly taking steps to address the vulnerability, including releasing a fix which will protect users against future attacks.
Fortunately, the attack appears to have been limited to the 3CX system and does not appear to be affecting other products or systems. However, the incident serves as a reminder for all software users to practice good security hygiene and be aware of their system’s capabilities. With cyber attacks becoming more and more sophisticated and pervasive, it is important to be vigilant and be mindful of the applications that users allow access to their systems. The 3CX Trojanized supply chain attack serves as a timely reminder of how vital it is to keep a keen eye on security.