3CX Vulnerability

High 

31/3/2023

CrowdStrike has observed unexpected malicious activity emanating from a legitimate, signed binary, 3CXDesktopApp — a softphone application from 3CX. The malicious activity includes beaconing to actor-controlled infrastructure, deployment of second-stage payloads, and, in a small number of cases, hands-on-keyboard activity. It has been rated 7.8 on the Common Vulnerability Scoring System (a 1 to 10 scale based on severity). 

Read more about the vulnerability here
Services
IT StrategyModern WorkCloud and Infrastructure
SupportDay to Day SupportCyber SecurityData InsightsBusiness Continuity and
Disaster Recovery
Industries
Professional ServicesManufacturingConstruction and LogisticsHealth and Veterinary
About
Who We AreOur PeopleCommunityContact
Insights
IT Industry NewsResourcesBlogsCase StudiesOutages & Vulnerabilities
Careers
Working at IT PartnersCurrent Vacancies

Panama East, 2/469 Grey Street, Hamilton, 3216

P: 07 957 2650E: hello@itpartners.co.nz
Contact