CDRThief Malware Targets VoIP Gear in Carrier Networks

2020-09-10 09:30

A malware dubbed CDRThief is targeting voice over IP softswitches inside the networks of large telecom carriers.

According to ESET researchers, the malware was custom-developed to attack the Linknat VOS2009 and VOS3000 softswitches, which run on standard Linux servers.

Once the malware is started, it attempts to launch a legitimate file present on the Linknat platform, further indicating familiar knowledge of the platform on the part of the attackers.

In any event, the malware is notable for its uniqueness: "As an entirely new Linux malware, it's a rarity and caught our attention," said Cherepanov.

"What was even more interesting was that it quickly became apparent that this malware targeted a specific Linux VoIP platform."

News URL

https://threatpost.com/cdrthief-malware-voip-gear-carrier-networks/159100/

#malware #voip

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Carrier		12	0	5	9	2	16