Default Passwords Blamed In $55M PBX Hacks

Posted by ScuttleMonkey on Friday June 12, 2009 @07:27PM from the god-sex-love dept.

An anonymous reader writes "The Washington Post is reporting that the US Justice Department has indicted three residents of the Philippines for breaking into more than 2,500 corporate PBX systems in the United States and abroad. The government says the hackers sold access to those systems to operators of call centers in Italy, which allegedly made 12 million minutes of unauthorized phone calls through the system, valued at more than $55 million. The DOJ's action coincides with an announcement from Italian authorities today of the arrest of five men there who are suspected of funneling the profits from those call centers to terrorist groups in Southeast Asia."

2 of 102 comments (clear)

Min score:

Reason:

Sort:

Telcos suck by Anonymous Coward · 2009-06-12 19:43 · Score: 4, Interesting

12 million minutes of unauthorized phone calls through the system, valued at more than $55 million.

... or a lot less.
$5 per minute?!! Just to route some packets a bit farther?
And then telcos wonder why IP phones are eating their lunch.
Maybe they're using MAFIAA math... Each minute causes $5 worth of damage to their network...?
Hacking? by EdIII · 2009-06-12 19:47 · Score: 5, Interesting

These were default passwords on more than likely open ports. I would hardly call that hacking. That would be like walking by a house with an open door and saying you picked the lock by walking inside.
One heck of an expensive lesson to the IT guys responsible. Never leave default passwords is Rule #1. Or at least in the top 3.