publicarray
Kevin Beaumont3CX got breached and used for supply chain delivery. I don’t know if anybody remembers my #3CX thread on Twitter last year but.. uh.. it got fun. https://www.reddit.com/r/crowdstrike/comments/125r3uu/20230329_situational_awareness_crowdstrike/
#3CX supply chain compromise of their customers was caused by a supply chain breach of #TradingTechnologies. There's probably other victims. https://www.mandiant.com/resources/blog/3cx-software-supply-chain-compromise
I had a big thread on #3CX supply chain hack here but it accidentally got deleted. One of the things I criticised them on was AV alert handling as they missed the early warning signs. Just got a mail from them, they’re fixing it.
To give them credit, they’ve done a really job at listening and responding in the incident.
Feynman 🔴@GossiTheDog you forgot the “good” 😋
valentijn scholten@GossiTheDog so this time there's actually some truth to "It was a *sophisticated* attack".
Spellbind0127@GossiTheDog I don’t remember being on twitter last year in a meaningful way therefore I definitely don’t remember any of your twitter posts.
wtfismyip@GossiTheDog Does 3CX still make host discovery super easy thorough cert transparency with their default 3cx fqdns?
PPN@GossiTheDog boy am I glad the company I work for moved away from 3CX last year. The iOS app was especially garbage anyway.
Jett 
@ppn @GossiTheDog what did you move to? Finding a decent replacement has proved frustrating
@jett @GossiTheDog I am afraid there is no simple answer to that. We just switched to Teams for internal conversation/meetings and people who needed 3cx for the VOIP/phone calls were just given business phones.
Stephen Gentle@GossiTheDog Is there any evidence of the server software being compromised? I admin a 3cx server at one of the companies I work with, they don’t use much phone comms so I can shut it down for a bit but it seems just some client software so far?