Hi,
During the past few days, I’ve been seeing that somebody has been able to hijack one of our extensions, added dial patterns, and tried to dial several numbers in Israel. Since our system which is a freepbx 2.5.2.4 has been hacked, I changed the password for the extensions and the default asterisk password. We have set up our asterisk server so that no one can do a remote console.
Our server is outside of the firewall. I was wondering how the hacker can penetrate our freepbx server.
I was thinking of changing the MySQL password also.
Any recommendations and explanation would be appreciated.
Thanks,
Manny