I've been dealing with this all day and figured I'd share with you guys.
Someone was able to get into Express Messenger on our 200 ICP over the weekend. At some point Friday, they got into the admin menu using the technician's password (not changed from default) from the auto attendant and changed the 0 digit to redirect to a number in the UK. The issue was reported to us and we changed it. We weren't sure of how they got in at that point, so we didn't change anything. Come last night around 10pm our call accounting printer was going crazy posting charges for calls to St Lucia from the Express Messenger VM. Same people (we assume) went back in and changed the 0 digit to dial St Lucia. In total, about 10 hours of calls went through (multiple simultaneously, lasting between 10-20 minutes) before we were able to shut PBX down for long enough for them to give up.
Our phone dealer called Mitel today and apparently we aren't the only ones who've had this problem. We're #7 to report it in the last few days. Mitel told us that it was the technician's password that they got in with. It has been changed, along with any other passwords that were left at default.
Lesson learned here - don't leave passwords at default. That, and you can get into Express Messenger VM admin from outside. As for the bill, I don't know yet. I'll know within 48 hours.
Someone was able to get into Express Messenger on our 200 ICP over the weekend. At some point Friday, they got into the admin menu using the technician's password (not changed from default) from the auto attendant and changed the 0 digit to redirect to a number in the UK. The issue was reported to us and we changed it. We weren't sure of how they got in at that point, so we didn't change anything. Come last night around 10pm our call accounting printer was going crazy posting charges for calls to St Lucia from the Express Messenger VM. Same people (we assume) went back in and changed the 0 digit to dial St Lucia. In total, about 10 hours of calls went through (multiple simultaneously, lasting between 10-20 minutes) before we were able to shut PBX down for long enough for them to give up.
Our phone dealer called Mitel today and apparently we aren't the only ones who've had this problem. We're #7 to report it in the last few days. Mitel told us that it was the technician's password that they got in with. It has been changed, along with any other passwords that were left at default.
Lesson learned here - don't leave passwords at default. That, and you can get into Express Messenger VM admin from outside. As for the bill, I don't know yet. I'll know within 48 hours.