Folks,
First I want to say Mikrotik equipment is an awesome value for the money, we use it and I endorse it.
Now on to the important part. If you have Mikrotik equipment patch it. Some malicious actors are using a vulnerability in the RouterOS Winbox service, that was patched in RouterOS v6.42.1 on April 23, 2018. The updates are free and there isn't any excuse not to.
I've had 4 customers in the last 24 hours that have had and their SIP credentials stolen by actors that compromised their Mikrotik gateways and either used these compromised gateways as a pivot points into their networks or used them to impersonate the customer for IP auth. So I repeat the patch is free, go patch your stuff.
Thanks,
Sam
↧