3CX DesktopApp Security Alert

While this is absolutely not related to FreePBX, there are a lot of FreePBX admins who also administer 3CX systems


CISA Report:

3CX CEO’s response:

The best way to go about this is to uninstall the app… We strongly recommend using our PWA client instead.

Also, when a user asked:

Hi Nick,

I have seen reports that the PBX instances themselves have also been compromised, is there any truth to this? or is it just the client app for windows?

I did not see a response to that…


I was about to share this. I’ve been looking over all of the data so far. One of the most concerning things is if you have passwords stored in your browser you can consider those compromised.

This is quite the rabbit hole.


This topic was automatically closed 31 days after the last reply. New replies are no longer allowed.