This is a far out one, My Wife was recently contacted at work by their provider saying they had stacked up 5k worth of toll calls to Somalia in a few days, In the end they were traced to Italy. The way they do this is to exploit default passwords which lazy admins haven't bothered to change. They can tell the model of pabx by the way it deals with the calls, different tones, prompts etc, they press the combination of keys to access voicemail of a DDI number, normally not the main number so it doesn't tie up a line and arouse suspicion. They get in with the default often "1234" password then setup call forwarding from that extension to Somalia, I suspect they do much the same thing to route the calls out of Italy. Then they simply dial in their call would then route directly to the number it has been call forwarded to. Pretty classic stuff really.
Fricken wicked stuff, looks like they are not alone, Here is a story where an Ausi firm got stung 9k
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment