Initialization vectors should be randomly generated for proper security guarantees.

[naskovai]

As part of some research about the common crypto mistakes that developers make, I noticed that your application has one of them.

In TripleDES you're initializing Cipher instances with a static IV which is insecure. More details about this issue and how to fix it are available here.