|
Joined: May 2010
Posts: 8
Member
|
OP
Member
Joined: May 2010
Posts: 8 |
I am not looking into changing companies because of them charging for service. It is because of the 'customer service' that I am getting throughout this. I don't understand how it is not possible for them to see what activity has happened unless it has been billed. Whether or not they can tell me. They say they don't have any way to access that information. On the tech end, nobody can tell me what needs to be done to protect us. And I mean they can't tell me what I can pay them to do to fix it. They say other than the international call block they don't know. So I want to look into other companies because this one doesn't seem to know how to work on our system. Paid or not. Regarding the "Sandy Simmons" box, I did put a password on that. I'm irritated that most of the employees did not have passwords set. I don't know how to even find out what other boxes there may be. You guys are great. This is a great service you all provide. Thanks
|
|
|
Visit Atcom to get started with your new business VoIP phone system ASAP
Turn up is quick, painless, and can often be done same day.
Let us show you how to do VoIP right, resulting in crystal clear call quality and easy-to-use features that make everyone happy!
Proudly serving Canada from coast to coast.
|
|
|
Joined: Dec 2005
Posts: 7,056
RIP Moderator-Mitel, Panasonic
|
RIP Moderator-Mitel, Panasonic
Joined: Dec 2005
Posts: 7,056 |
They can't tell you when it happens because you are not monitoring your outgoing calls with the SMDR capabilities of the system. (SMDR = Station Message Detail Recording) Get it set up now, and explained to you in terms that make sense to you! While they are there, Deny trunk/line outbound access for AA/VM ports, Change the Admin password on the phone system AND the AA/VM. AGAIN! And make the passwords NOT be easy to remember. No consecutive digit strings like 1234 or 2468, your license plate number, last four of you social, birth date, etc.
When I was young, I was Liberal. As I aged and wised up, I became Conservative. Now that I'm old, I have settled on Curmudgeon.
|
|
|
|
Joined: Jul 2005
Posts: 1,334
Member
|
Member
Joined: Jul 2005
Posts: 1,334 |
Also as a minimum. International toll bar your VMS ports. We do this as a matter of course now on system installs. Just hope the the hacker doesn't know how to access the PBX programming to unblock them..
Regards,
Paul W Now back to a 0 day week. Love these 7 day weekends.
|
|
|
|
Joined: Nov 2008
Posts: 953
Member
|
Member
Joined: Nov 2008
Posts: 953 |
The Hacker Can't make Changes to Your System if they don't have a way to Enter "System Manager" Programming. Go to Every Phone and Log in to that Phones Mail Box and Make sure They aren't set to System Manager. The Problem That You may Have is The Last time they were in there, they have already setup their box's. Only one way to Make sure, You have to have your tech Log into the Voice mail with a Laptop and go thru all the Box's.
"The Only Stupid Question, Is the Question Thats not Asked."
|
|
|
|
Joined: Jul 2005
Posts: 1,334
Member
|
Member
Joined: Jul 2005
Posts: 1,334 |
I wasn't thinking of the hacker accessing the voicemail but via the systems remote modem.. hasn't happened yet down here but there is always a first..
Regards,
Paul W Now back to a 0 day week. Love these 7 day weekends.
|
|
|
|
Joined: Sep 2008
Posts: 142
Member
|
Member
Joined: Sep 2008
Posts: 142 |
Like Rickman said...without console access to the VM itself there's no easy way to see all of the new boxes that were made. I would be less worried about securing the current boxes which is easy enough, it's the CARS/virtuals that were created once the system was compromised that are most likely doing the 'damage'.
|
|
|
|
Joined: Aug 2005
Posts: 2,125
Member
|
Member
Joined: Aug 2005
Posts: 2,125 |
I know that this is an old thread, but just for reference, in case it would be helpful to folks...
It's a good idea, whenever you're logged into any A/V voicemail, to scroll through the mailboxes and note boxes that don't have the "SC" flag (SC = Security Code). Also, scan for mailboxes that transfer to 9, or 9,011, etc., and for notification codes that start 9011, especially 9011632xxxxxxxx (Philippines, Manila).
I usually give the local IT guy a list of mailboxes with no SC and explain the dangers. That puts it on him to keep the users doing things right.
|
|
|
Forums84
Topics94,293
Posts638,829
Members49,768
|
Most Online5,661 May 23rd, 2018
|
|
0 members (),
120
guests, and
231
robots. |
Key:
Admin,
Global Mod,
Mod
|
|
|
|