Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI Vaguely Warns of Asterisk Vishing Vulnerability

Posted by kdawson on from the do-not-call-back dept.

coondoggie writes in to let us know about a fraud alert issued by the FBI's Internet Crime Complaint Center, warning that an unspecified bug in unspecified versions of Asterisk IP PBX software could allow criminals to generate "thousands of vishing telephone calls to consumers within one hour." PC World checked with Digium, developer of Asterisk, and found some puzzlement as to what bug the FBI had in mind. "In March, researchers at Mu Security reported a bug that could allow an attacker to take control of an Asterisk system. Digium wasn't certain what vulnerability the FBI was referencing in its advisory. However John Todd, the company's Asterisk open-source community director, believes that it was probably this March bug. That vulnerability 'basically allowed you to take over the account of one individual,' he said. ... However, the attack described by the FBI would be extremely hard to pull off, Todd said." Update: 12/09 02:54 GMT by KD : Digium has put out a statement on the IC3 warning (further details), confirming that what the FBI had in mind was an old bug and difficult in the extreme to exploit.

6 of 57 comments (clear)

  1. asterisk phishing? by syrinx · · Score: 5, Funny

    So, this?

    --
    Quidquid latine dictum sit, altum sonatur.
  2. Re:Vishing = Voice Phishing by mrsteveman1 · · Score: 3, Funny

    Oh PHishing! I thought i was just supposed to yell at the fish, but it didn't work =(

  3. Vampire dictated? by Rik+Sweeney · · Score: 5, Funny

    "FBI Vaguely Warns of Asterisk 'Vishing' Vulnerability"

    what's next:

    "FBI Vaguely Warns of People 'Vanting' To Suck Your Blood"

    --
    Summation 2
    1. Re:Vampire dictated? by Amazing+Quantum+Man · · Score: 2, Funny

      Are you crazy? That was old back in the '60s!

      Phone rings
      I am the Viper! I am coming!
      Woman panics

      Phone rings
      I am the Viper! I am coming!
      Woman panics more

      Door knock
      I am the Viper! I am here to vipe the vindows!

      --
      Fascism starts when the efficiency of the government becomes more important than the rights of the people.
  4. Re:Can you hear me now? by couchslug · · Score: 2, Funny

    "I am Mr. Dramane Yadi, I work in the Accounts/ Operations Department of a Prime banks here in Abidjan Cote D'Ivoire. I actually have an urgent and very confidential business proposal for you. I got your contact from Internet and decided to contact you immediately."

    "This is Mr Smith. I would be delighted to do business with you, and you called at the ideal time!
    I have a choice portfolio of mortgage-backed securities and would like to offer you the opportunity...

    *CLICK**DIALTONE*

    --
    "This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
  5. Re:Vishing = Voice Phishing by Anonymous Coward · · Score: 1, Funny

    Vhen you vish upon a *...