"Ransomware Hacker Spotted Using Zero-Day Exploit on Business Phone VoIP Device"

A vulnerability in a Voice over Internet Protocol (VoIP) business device was used by a hacker to infect a company with ransomware. According to researchers at the security firm Crowdstrike, the hacker exploited a new vulnerability in a Linux-based VoIP appliance from the business phone provider Mitel. Because the VoIP device had few built-in security measures, the ensuing zero-day attack allowed the hacker to access the company's network through it. The goal of the attack was to effectively take control of the Linux-based VoIP equipment so that the hacker could access other areas of the network. Due to security software noticing the suspicious behavior over the victim's network, Crowdstrike was able to identify the hacker's presence. The business also informed Mitel of the previously undiscovered vulnerability, and in April, Mitel distributed a patch to affected clients. The incident highlights the mounting concern that ransomware organizations would employ zero-day vulnerabilities to target additional victims. This article continues to discuss the exploitation of a zero-day flaw in a business VoIP device to spread ransomware. 

PCMag reports "Ransomware Hacker Spotted Using Zero-Day Exploit on Business Phone VoIP Device"