Anyone suffered from Toll Fraud? (PBX Hacked)

I’d like to learn from anyone whose PBX was hacked and as a result suffered from toll fraud - or simply got a big $ invoice from their carrier at month end because someone did something bad on your PBX.

I would appreciate if you could post your details - or if embarrassing you can use the contact form on our website (www.telium.ca) to tell us.

I realize it can take some time to write out the details, so as a thank our company is offering a free copy of its Security for Asterisk (SecAst) commercial software, just for sharing your details. (within limits - I assume we’re not going to get hundreds of posts). The offer is only there if you want it, but I appreciate if you can share your experience regardless.

If the moderators feel its appropriate (and safe) we would also like to post a top 10 list of how hackers got in. This is NOT a contest, nor salesish/commercial…if any part of this post is a problem with the terms of the forums please just edit it out.

I got charged for some unauthorized calls, due that I created sip peer account for a demo using weak password and I forgot to delete the acocunt after the demo

Most of the Asterisk hackrs are to weak password or use device name as password and username.

Asterisk provide may good tools we can use to enforce security like

acl configuration

sip permit and deny opton

disallow guest calls

context for guest calls or remote user

also fail2ban do a good job

Also carriers like twilio have a good tool for International Voice Dialing Geographic Permissions