VERY IMPORTANT

In late September 2022, threat researchers uncovered a supply-chain attack carried out by malicious actors using a trojanized installer of Comm100, a chat-based customer engagement application. Investigations of the incident revealed that the breadth and depth of the campaign’s impact were greater than what the researchers had initially thought; they also found that more applications and their respective versions had been affected and established that attacks began much earlier than their first reckoning on Sept. 29, 2022.