1 min read

CDRThief New VoIP Linux Malware – Can Credit Card Skimmers be Far Behind?

David Gamey David Gamey : Sep 10, 2020 10:07:00 PM

CDRThief New VoIP Linux Malware – Can Credit Card Skimmers be Far Behind?

Many organizations have either undergone or are planning migrations or acceleration of call centers, remote working, and online presence exploiting technologies like VoIP. Criminals are increasingly taking an interest in these channels. An interesting discovery by ESET, Linux based malware targeting soft-switches produced by China based Linknat. Two models are affected the VOS2009 and VOS3000.

This malware steals call detail recording (CDR) metadata from the systems internal MySQL database. At this time it’s believed that the goal of this malware is International Revenue Share Fraud (IRSF).

While this isn’t a VoIP Credit Card Skimmer, it demonstrates that there are skilled bad actors actively exploiting telephony technologies. This development shows why it is important to review all information channels and ensure that they are both secure and compliant.

Learn More
2017 Toronto Ride To Conquer Cancer | blog | Control Gap

2017 Toronto Ride To Conquer Cancer | blog | Control Gap

CG Blogger CG Blogger : Feb 2, 2017 12:00:00 AM

This year, Control Gap Inc. has donated $2,500 to The Enbridge Ride to Conquer Cancer which has...

Read More
The ENTITY (a scary PCI monster) | blog,pci | Control Gap

The ENTITY (a scary PCI monster) | blog,pci | Control Gap

David Gamey David Gamey : Oct 31, 2019 12:00:00 AM

If you're subject to PCI DSS you need to understand "The ENTITY". We aren't talking about a...

Read More
PCI Compliance and the Intel AMT Vulnerability

PCI Compliance and the Intel AMT Vulnerability

David Gamey David Gamey : May 15, 2017 10:07:00 PM

On May 1st a critical new and possibly unprecedented vulnerability was announced. The flaw in...

Read More