3CX disclosed that affected Electron Windows and macOS DesktopApp versions included a compromised bundled library that caused antivirus detections for 3CXDesktopApp.exe. The company reported that contacted domains had been reported and largely taken down, and it characterized the incident as a targeted advanced persistent threat supply-chain attack in which only selected systems received later malware stages. The source advised customers to use the PWA app while a rebuilt Windows application and new signing certificate were prepared, making the report relevant for exposure assessment, software inventory review, and follow-up hunting for dormant or second-stage activity.