3CX, a VoIP software vendor, is set to implement a mandatory security upgrade of its Progressive Web Application (PWA) client in response to a recent security incident. The upgrade will include a ‘Busy Lamp Field’ software version of LED lights that indicate when a line is busy, as well as the hashing of all passwords stored in the system. Other measures include the removal of passwords from welcome emails for new users and more restrictive IP access to the Management Console. The PWA client update is expected to roll out in alpha and beta versions next week, with the final release following a week later.
The security incident in question was a supply chain attack in late March, which was likely carried out by North Korean state hackers. The TAXHAUL (AKA “TxRLoader”) malware used in the attack targeted 3CX software components and resulted in stolen passwords and other login details.
