(Newswire.net — March 31, 2023) —
In a recent supply chain attack, hackers compromised the popular communication software, 3CX Desktop App. The incident has raised concerns across the IT world, as several software vendors embed or use 3CX in their products, potentially exposing countless systems to risks. In light of this event, industry experts have shared their insights and observations.
Luis Alvarez, CEO of the Alvarez Technology Group, noted that the attack affects a broad application spectrum, as 3CX is widely used. He mentioned they received alerts from Huntress regarding clients’ systems with the suspect software installed. However, Huntress has not yet detected any active exploits. Alvarez also referred to the Cybersecurity and Infrastructure Security Agency (CISA) alert issued in response to the attack and the steps taken by 3CX to mitigate the exploit.
Expert Opinions and Recommendations
In a video released by Blake Schwank, CEO of Colorado Computer Support, he discusses the attack and raises awareness about the incident. Meanwhile, Robert Giannini with Giaspace shares his experience with Threatlocker and others swiftly responding to the matter. Giannini reveals that they have been phasing out 3CX in favor of Broadvoice, and this incident has only reinforced their decision. He also criticizes 3CX’s response on their forum, where they initially denied the issue and directed users to work with vendors on false positives.
Nick Martin, Director of Managed Services with Mainstreet IT Solutions, shares that they are assisting several customers affected by the issue. He commends CrowdStrike for actively blocking the attack, showcasing the importance of robust cybersecurity measures in protecting users’ systems.
Addressing Supply Chain Attacks
As the 3CX Desktop App hack unfolds, the IT world is reminded of the potential dangers of supply chain attacks. With hackers increasingly targeting such avenues to infiltrate systems, software vendors and IT professionals must remain vigilant and take necessary precautions to protect their clients and users. As industry experts share their experiences, it’s clear that collaboration and proactive response are essential to mitigating the impact of these attacks.
In conclusion, the 3CX Desktop App compromise is a stark reminder of the need for strong cybersecurity measures and collaboration among industry professionals. As experts continue to address the issue and share their insights, it is crucial that the IT world remains vigilant and works together to safeguard against supply chain attacks.