OK guys,
I haven't had to touch one of these in a long time. We have everyone moved to IP Office now.
However inherited a new customer today out in the middle of nowhere. They have an ACS 6.0 with one 308 card and a Partner Messaging 6.0 with a 4 port card.
Initially I went down to survey to see what they want for a new system. But after talking price, they decided to hold on to what they have a little longer.
So while I'm there, I do a quick exam of their system. Very well kept in climate controlled environment. They mentioned that a couple of people can no longer get in to their mail boxes. Ok, no big deal. I'll be the knight in shining Armour that comes to the rescue. Wouldn't you know it. The Admin Password has been changed. I look at their Docs to verify what it was set at. When I inquired who was doing the service work prior to me, they said it has not been worked on since the install. That the in house IT guy is the only one who does it. And he said he didn't change it. Ok. I'm thinking they have been hacked and I explained what the Hackers do. BINGO!!! Bells and Whistles started going off. They said that they have been getting charged for calls coming into their Toll Free Number once a week about 2am and they always go to the same number in Wisconsin. I called the number in the middle of the day and get a lady answering in a language that I have never heard before. After looking at the bill. I see that the first call last about a minute. The next call last any where from 2 hours to 4 hours. Then the last call last about a minute. I'm thinking that they are going in and changing a mail box for outbound calling. Then when they are done, they change it back. But since they are probably the ones who changed the admin password I can't get in to admin the mail boxes. So after all of that. Can I use my Partner Messaging Rls 7.0 Software on my laptop to connect to the 6.0 Partner Messaging system with out knowing the Telephone log in password. And then change it there. I'm also thinking I may be able too see if any other mailboxes have been created that they are unaware of. And I could also pay one of the Great Avaya guys here to dial in and reset it for me if needed. Hoping that the hacker does not have the Master Backdoor password to reset it. Thinking he just used the standard default scenario to gain access. Otherwise, he will be able to get in again. Which kind of defeats my efforts. Of course this does make for a good selling point to go ahead and upgrade to and IP Office. Give me your thoughts guys
I haven't had to touch one of these in a long time. We have everyone moved to IP Office now.
However inherited a new customer today out in the middle of nowhere. They have an ACS 6.0 with one 308 card and a Partner Messaging 6.0 with a 4 port card.
Initially I went down to survey to see what they want for a new system. But after talking price, they decided to hold on to what they have a little longer.
So while I'm there, I do a quick exam of their system. Very well kept in climate controlled environment. They mentioned that a couple of people can no longer get in to their mail boxes. Ok, no big deal. I'll be the knight in shining Armour that comes to the rescue. Wouldn't you know it. The Admin Password has been changed. I look at their Docs to verify what it was set at. When I inquired who was doing the service work prior to me, they said it has not been worked on since the install. That the in house IT guy is the only one who does it. And he said he didn't change it. Ok. I'm thinking they have been hacked and I explained what the Hackers do. BINGO!!! Bells and Whistles started going off. They said that they have been getting charged for calls coming into their Toll Free Number once a week about 2am and they always go to the same number in Wisconsin. I called the number in the middle of the day and get a lady answering in a language that I have never heard before. After looking at the bill. I see that the first call last about a minute. The next call last any where from 2 hours to 4 hours. Then the last call last about a minute. I'm thinking that they are going in and changing a mail box for outbound calling. Then when they are done, they change it back. But since they are probably the ones who changed the admin password I can't get in to admin the mail boxes. So after all of that. Can I use my Partner Messaging Rls 7.0 Software on my laptop to connect to the 6.0 Partner Messaging system with out knowing the Telephone log in password. And then change it there. I'm also thinking I may be able too see if any other mailboxes have been created that they are unaware of. And I could also pay one of the Great Avaya guys here to dial in and reset it for me if needed. Hoping that the hacker does not have the Master Backdoor password to reset it. Thinking he just used the standard default scenario to gain access. Otherwise, he will be able to get in again. Which kind of defeats my efforts. Of course this does make for a good selling point to go ahead and upgrade to and IP Office. Give me your thoughts guys