Posted by: Tony Bradley
Asterisk, Digium, FBI, Phishing, vishing, VoIP security
The FBI has issued a warning that a vulnerability in the open-source Asterisk platform, used by many as a free IP PBX, can lead to the system being exploited to initiate vishing calls. Vishing, a term concocted to mean a voice or VoIP based phishing attack, uses a voice system to contact potential victims and attempt to get them to share sensitive or confidential information which can be used to compromise their accounts. Generally, the purpose would be to gain access to financial information and be able to gain access to bank or investment accounts to steal money from the victims.