Caution When Using 3CX DesktopApp (CVE-2023-29059) | allinfosecnews.com

April 5, 2023, 4:11 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Overview

Details about how supply chains were attacked through the 3CX DesktopApp were published. [1] This software provides users with various communication functions, such as voice calls and video conferences, and can be operated on both Windows and MAC operating systems. Currently, the 3CX company is preparing to issue a new certificate, and until then, they are instructing users to use an alternative software.

Description

Regarding this, the distributed malware are confirmed to include modules that perform malicious functions and …

3cx 3cxdesktopapp certificate communication conferences cve cve-2023-29059 desktopapp distributed files functions installation issue mac malicious malware malware analysis modules msi operating systems software supply supply chains systems video voice windows

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Sintesi riepilogativa delle campagne malevole nella settimana del 20 – 26 Aprile 2024 16 minutes ago | malware.news

cert con cui dei +2

More details on rural water system breach sought by legislators 21 minutes ago | malware.news

alejandro mayorkas article breach cyberattack +23

Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug 21 minutes ago | malware.news

agency apt28 article attacks +35

AI sparks increasing cyber concerns for execs amid growing adoption 21 minutes ago | malware.news

adoption article artificial artificial intelligence +9

Ransomware LockBit: anomalie dopo lo smantellamento an hour ago | malware.news

article cert email link +4

Adopt New Technology that Delivers Value to Your Large Enterprise an hour ago | malware.news

adoption agile business changing +19

16 arrests as Vietnamese network smuggling migrants across the English Channel busted an hour ago | malware.news

arrests busted channel criminal +16

ShadowRay Campaign Exploits Critical Ray Framework Vulnerabilities to Compromise AI Workloads Globally an hour ago | malware.news

anyscale breach campaign compromise +12

Infections with abandoned PlugX USB worm continue to be prevalent an hour ago | malware.news

addresses ars technica compromised continue +12

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Security Compliance Architect - Experian Health (Can be REMOTE from anywhere in the US)

@ Experian | ., ., United States

View on infosec-jobs.com

IT Security Specialist

@ Ørsted | Kuala Lumpur, MY

View on infosec-jobs.com

Senior, Cyber Security Analyst

@ Peloton | New York City

View on infosec-jobs.com

Cyber Security Engineer | Perimeter | Firewall

@ Garmin Cluj | Cluj-Napoca, Cluj County, Romania

View on infosec-jobs.com

Pentester / Ethical Hacker Web/API - Vast/Freelance

@ Resillion | Brussels, Belgium

View on infosec-jobs.com