On Wednesday 29th March, 3CX Phone System suffered a security incident where a third party exploited a vulnerability in 3CX products.

Since the attack, 3CX have declared that they will be open and transparent in sharing details of the attack and taking action to ensure this will not happen again.

You can read more about 3CX's statement here: https://www.3cx.com/blog/news/security-incident-updates/

In short, 3CX recommends several steps for its users to take to ensure the security of their data and devices:

1. Uninstall the 3CX Electron Desktop Application from all Windows or Mac OS systems.

2. Continue AV scans and EDR solutioning for malware in your organisation's networks.

3. Until further notice, use the PWA Web Client rather than the Desktop App.

4. Subscribe to 3CX's RSS feed where they will provide regular updates to this incident

5. Follow 3CX on social media for updates and security alerts in the future

6. Use 3CX's dedicated support forum if you have any queries or concerns relating to this incident.

In appreciation for their customers' and partners' support, 3CX are extending all customers' subscriptions by 3 months, free of charge. Details of this extension will be provided in an email to all customers.

If you are concerned about the security of your devices, get in touch with us for a review of your telecoms and security.