ALERT Edgewater Hacking

[Stewart]

On Friday we just worked through a hack on a client's Edgewater that caught us off-guard. The techs over at Bandwidth.com did a great job of helping us out. It seems that even if you reset the password in the GUI interface, it doesn't reset the SSH password. When setting it up over a year ago we went into both to look around and make the configurations. Once we were done we reset the GUI password and thought we were done. We never shut off the SSH and it left us vulnerable since that password must be reset via the command line. It's all closed up now and we've corrected the vulnerability at our other clients using the hardware but I thought I'd let everyone know what happened. Luckily we had international calling turned off and so no damage was done. The technician at Bandwidth informed us that they are seeing a rash of these and that he personally was seeing this 2-3 times a week. Good luck!