3CX released an updated Windows Electron communications application for desktop Thursday, CEO Nick Galea said, the week after researchers disclosed a supply chain attack campaign was underway targeting the technology.
The company, which provides online voice, video conferencing and messaging services for businesses, had been working with Mandiant to investigate the supply chain attack. The company, however, still recommends users install 3CX as a native web app.
On Friday, 3CX CISO Pierre Jourdan introduced a guide on how to reset passwords and secure the administrative console.
“We’ve included changing your root credentials and what to do if you’ve forgotten them,” Jourdan said.
Jourdan references the option of configuring the PBX to use Google and Microsoft 365 single sign on, which lets users authenticate in both the web client and management console.
3CX emphasized there is no current evidence of the management console password being compromised.
As previously reported, researchers suspect state-linked actors connected to the Democratic People’s Republic of Korea were behind the attack. CrowdStrike in late March attributed the attack to a threat actor called Labyrinth Chollima, which is connected to the Lazarus Group.
3CX said it has more than 600,000 business customers worldwide and more than 12 million active daily users.