23 Apr
2017
23 Apr
'17
3:09 a.m.
On Apr 22, 2017, at 09:55, Ruben ON3RVH on3rvh@on3rvh.be wrote:
(Please trim inclusions from previous messages) _______________________________________________ It's not only ddos that they are interrested in. A malconfigured SIP PBX can also be misused as their personal PBX and breakout. You would not be the first whose call credit would shoot through the roof once they find a flaw in the configuration
Oh yes. I run many internet facing sip servers. Bots will try many different dialing patterns hoping to find something. They're also trying to bruteforce/guess sip account credentials.
I've gotten as high as 10,000 attempts per second in an attempt to break through before my IDS catches on and firewalls them off.