A high-severity security flaw in the TrueConf client video conferencing software has been exploited in the wild as a zero-day as part of a campaign targeting government entities in Southeast Asia dubbed TrueChaos. The vulnerability in question is CVE-2026-350…
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
A zero-day vulnerability (CVE-2026-350) in TrueConf video conferencing software was exploited in attacks targeting government networks in Southeast Asia. The flaw enabled remote code execution, compromising sensitive systems. Immediate patching and network monitoring are critical to mitigate ongoing threats.