FBI Warns of Asterisk PBX vulnerability to hacking

[David]

[FONT=Arial, Helvetica, sans-serif][SIZE=-1]For our local business people who may be using this PBX....[/SIZE][/FONT]

[FONT=Arial, Helvetica, sans-serif][SIZE=-1]FBI Warns of New Vishing Attacks Targeting Private Branch Exchange (PBX) Systems[/SIZE][/FONT]

The FBI has identified a new technique used to conduct vishing attacks where hackers exploit a known security vulnerability in Asterisk software. Asterisk is free and widely used software developed to integrate Private Branch Exchange (PBX) systems with Voice over Internet Protocol (VoIP) digital Internet voice calling services; however, early versions of the Asterisk software are known to have a vulnerability. The vulnerability can be exploited by cyber criminals to use the system as an auto dialer, generating thousands of vishing telephone calls to consumers within one hour.

Federal Bureau of Investigation - Press Release