RE: War Dial on my PBX
From: .:[ Death Star]:. (deathstar_at_optonline.net)
Date: 06/26/03
- Previous message: Volker Tanger: "Re: War Dial on my PBX"
- In reply to: Maria J. Vello: "RE: War Dial on my PBX"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 26 Jun 2003 00:52:51 -0400 To: mjvello@securecs.com, 'David Barnett' <dbarn064@earthlink.net>, incidents@securityfocus.com
I'm not a PBX expert, but isn't there a feature that doesn't allow calls
to be made to overseas numbers. I know that was the case in two of the
companies I worked for. If you don't need to call India or Japan them
disable them. I think you can even control the numbers that are allowed
to call another area code.
-----Original Message-----
From: Maria J. Vello [mailto:mjvello@securecs.com]
Sent: Wednesday, June 25, 2003 2:43 PM
To: 'Maria J. Vello'; 'David Barnett'; incidents@securityfocus.com
Subject: RE: War Dial on my PBX
David,
Make sure remote access is disabled.
Make sure your not allowed to make outgoing calls from your voice mail
box.
Call your local phone company or service provider (whomever you have the
DID
numbers and phone service through) they can trace where this is coming
from
and they have a security department of their own.
any modems connected to lines? they are probably war dialing against
you
two way trunks too, if they are war dialing.
(disabling trunk to trunk connections was key)
-----Original Message-----
From: David Barnett [mailto:dbarn064@earthlink.net]
Sent: Tuesday, June 24, 2003 6:41 PM
To: incidents@securityfocus.com
Subject: War Dial on my PBX
My company's PBX system (Nortel Meridien) is getting hammered. All our
DIDs
are getting hit. Aside from disabling trunk to trunk, what could I do
to
help mitigate this problem. Another office last year was hit and
through
the voice mail system someone was able to make $25,000 worth of calls
in a
day. This was another system though. Any help is much appreciated.
------------------------------------------------------------------------
---- Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas, the world's premier technical IT security event! 10 tracks, 15 training sessions, 1,800 delegates from 30 nations including all of the top experts, from CSO's to "underground" security specialists. See for yourself what the buzz is about! Early-bird registration ends July 3. This event will sell out. www.blackhat.com ------------------------------------------------------------------------ ---- *** END PGP DECRYPTED/VERIFIED MESSAGE *** ------------------------------------------------------------------------ ---- Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas, the world's premier technical IT security event! 10 tracks, 15 training sessions, 1,800 delegates from 30 nations including all of the top experts, from CSO's to "underground" security specialists. See for yourself what the buzz is about! Early-bird registration ends July 3. This event will sell out. www.blackhat.com ------------------------------------------------------------------------ ---- ---------------------------------------------------------------------------- Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas, the world's premier technical IT security event! 10 tracks, 15 training sessions, 1,800 delegates from 30 nations including all of the top experts, from CSO's to "underground" security specialists. See for yourself what the buzz is about! Early-bird registration ends July 3. This event will sell out. www.blackhat.com ----------------------------------------------------------------------------
- Previous message: Volker Tanger: "Re: War Dial on my PBX"
- In reply to: Maria J. Vello: "RE: War Dial on my PBX"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
