The attacks exploited a post-authentication command injection vulnerability in the endpoint manager’s interface.
The post 900 Sangoma FreePBX Instances Infected With Web Shells appeared first on SecurityWeek.
Source: https://www.securityweek.com/900-sangoma-freepbx-instances-infected-with-web-shells/