URL has been copied successfully!
900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks


Tags: , , , ,

The Shadowserver Foundation has revealed that over 900 Sangoma FreePBX instances still remain infected with web shells as part of attacks that exploited a command injection vulnerability starting in December 2025.Of these, 401 instances are located in the U.S., followed by 51 in Brazil, 43 in Canada, 40 in Germany, and 36 in France.The non-profit entity said the compromises are likely

First seen on thehackernews.com

Jump to article: thehackernews.com/2026/02/900-sangoma-freepbx-instances.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Cybersecurity Snapshot: AI Data Security Best Practices Released, While New Framework Seeks To Help IT Pros Gain Cyber Skills
  2. Frequently Asked Questions About Chinese State-Sponsored Actors Compromising Global Networks
  3. Cybersecurity Snapshot: Refresh Your Akira Defenses Now, CISA Says, as OWASP Revamps Its App Sec Top 10 Risks
  4. Cybersecurity Snapshot: Refresh Your Akira Defenses Now, CISA Says, as OWASP Revamps Its App Sec Top 10 Risks