Global CyberSecurity

Backdoor Targets FreePBX Asterisk Management Portal 


Published on 12/15/2022 – Last Updated on 12/15/2022 by OTC

Written in PHP and JavaScript, FreePBX is a web-based open-source GUI that manages Asterisk, a voice over IP and telephony server. This open-source software allows users to build customer phone systems.

During a recent investigation, I came across a simple piece of malware targeting FreePBX’s Asterisk Management portal which allowed attackers to arbitrarily add and delete users, as well as modify the website’s .htaccess file.

Let’s take a closer look at this backdoor.

Continue reading Backdoor Targets FreePBX Asterisk Management Portal  at Sucuri Blog.

Our latest update to the quality rater guidelines: E-A-T gets an extra E for Experience

Previous article

Search Central Live 2022 Highlights

Next article

You may also like


Comments are closed.