Cybersecurity researchers reveal on-going cyber fraud operation led by hackers in Gaza, West Bank, and Egypt. Hackers have compromised VoIP servers of more than 1,200 organizations across 60 countries over the past 12 months. Cybersecurity firm Check Point Research found that the attack exploits CVE-2019-19006 (CVSS score 9.8), a critical vulnerability impacting the administrator web interface of FreePBX and PBXact, potentially allowing unauthorized users to gain admin access to the system.
Source: https://thehackernews.com/2020/11/premium-rate-phone-fraudsters-hack-voip.html