A high-severity security flaw in the TrueConf client video
conferencing software has been exploited in the wild as a zero-day
as part of a campaign targeting government entities in Southeast
Asia dubbed TrueChaos. The vulnerability in question is
CVE-2026-3502 (CVSS score: 7.8), a lack of integrity check when
fetching application update code, allowing an attacker to
distribute a tampered update,
Read more https://thehackernews.com/2026/03/trueconf-zero-day-exploited-in-attacks.html
