Asterisk Vishing Attacks "Endemic"

← Back to Stories (view on slashdot.org)

Asterisk Vishing Attacks "Endemic"

Posted by Soulskill on Wednesday October 28, 2009 @03:40AM from the enter-your-ssn-if-you-concur dept.

Ian Lamont writes "Remember the report last year that the FBI was concerned about a 'vishing' exploit relating to the Asterisk IP PBX software? Digium played down the report, noting that it was based on a bug that had already been patched, but now the company's open-source community director says that attacks on Asterisk installations are 'endemic.' There have been dozens of reported vishing attacks in recent weeks, says the article: 'The victims typically bank with smaller regional institutions, which typically have fewer resources to detect scams. Scammers hack into phone systems and then call victims, playing prerecorded messages that say there has been a billing error or warn them that the bank account has been suspended because of suspicious activity. If the worried customer enters his account number and ATM password, the bad guys use that information to make fake debit cards and empty their victim's bank accounts.'"

10 of 141 comments (clear)

Min score:

Reason:

Sort:

Re:Vishing? by CannonballHead · 2009-10-28 03:52 · Score: 2, Funny

I'm sure we could come up with a better term than "vishing".
Like voice phishing? ;)
Fishing, phishing, vishing, what's next? by noidentity · 2009-10-28 04:03 · Score: 5, Funny

Fast-forward to 2109... ghoting attacks are on the rise, but nobody knows what the hell they are.
Re:Vishing? by jittles · 2009-10-28 04:16 · Score: 4, Funny

Actually, the attack is named after my Indian friend Vishal. But everyone calls him Vish. No really, I didn't just make this up.
Re:Usage guide by hcpxvi · 2009-10-28 04:50 · Score: 2, Funny

voosh? (surely?)
Re:Vishing? by MiniMike · 2009-10-28 04:52 · Score: 2, Funny

What's next, we're going to call telemarketers "vammers"? And we'll call phreakers "vackers"?
How about varmints and pharmints?
Telemarketers don't deserve a new word, especially when an existing one fits so well. Phreakers at least are exhibiting some level of skill, even if it is in a somewhat antisocial manner (so I assume, at least).
undoing moderation by Rashan · 2009-10-28 04:55 · Score: 2, Funny

positing to undo incorrect moderation. nothing to see here, move along...

--
Insert witty .sig HERE.
Re:I got one of those calls. by ColdWetDog · 2009-10-28 05:03 · Score: 5, Funny

I hung up and immediately called the FBI. I'm glad they are actually doing something about it.
If you're like me (and most of Slashdot), you don't need to call the FBI at all. Just look straight into the webcam and tell them what the problem is.

Don't believe the naysayers that tell you that government is inefficient.

--
Faster! Faster! Faster would be better!
Re:Vishing? by jo42 · 2009-10-28 05:36 · Score: 2, Funny

"Vishing" is what it is called when Vishnu goes fishing.
Vishing and hoping by lennier · 2009-10-28 12:54 · Score: 2, Funny

'Vishing', eh? Vot are we going to call 'video phishing'?
Pishing?

--
You are not a brain: http://books.google.com/books?id=2oV61CeDx-YC
Re:Phone Phishing by misof · 2009-10-28 21:20 · Score: 2, Funny

Yeah, but if you keep the current naming scheme, you get to call the incompetent bank employees "vankers" :)