Indeed. IMO: The response to this should have been way more serious as this affects the commercial PBXact from Sangoma.
I was hoping to see in the response that “We worked with affected users to gain access to their servers and gather data. The data that we have collected is currently being analyzed by our security team”
My interpretation of the response was “Hey, another similar to ‘SIP password compromised’ incident! Change your password!”