Bug #7520
closed
Major security breach / backdoor!?
0%
Description
Hi!
I installed version 4 a few months ago on a virtual machine on our internal network, not open to the internet. I connected it to a trunk in our live PBX and did some testing. Since then the virtual machine has been suspended.
Yesterday I started it again and did some more testing.
Today I realize that the trunk has been subjected for a lot of fraud attempts during the night, approx 1000 calls.
The fraud attempts does not come from the GOautodial server itself, all calls is directly connected to the trunk with the correct credentials.
The trunk has been enabled in our live PBX all the time, from the first setup several months ago. It has a very secure password (16 mixed characters and numbers etc). No fraud attempts has been recorded during this time.
The only possible way I can see is that someone has gathered the trunk information from my GOautodial install in some way, is there a backdoor or similar somewhere?
Br - Tomas
Updated by Wittie Manansala almost 5 years ago
- Status changed from New to Rejected
Hi,
Please use the forums. This issue tracker is for GOautodial development purposes only.
https://goautodial.org/projects/goautodialce/boards
Thank you!