On 19th April at 18:00 we invite you to the next Cyber Fortress League games, we are preparing a scenario full of surprises.
Warning to users of the 7DX telephony system
The Cyber Thunder company warns all users of the 7DX telephony system against a possible cyberattack carried out using this software.
7DX is a software PBX telephone system developed and sold by Szczygiel Software. The 7DX telephone system is based on the Session Initiation Protocol (SIP) standard and allows subscribers to make calls over the Public Switched Telephone Network (PSTN) or Voice over Internet Protocol (VoIP) services locally, in the cloud, or using a company-owned and operated cloud Szczygiel Software.
The 7DX phone system is available for Windows, Linux, Raspberry Pi and is compatible with standard SIP phones, VoIP services as well as traditional PSTN phone lines, plus faxing, voice and video meetings and groupware.
The ICT infrastructure of Szczygiel Software has recently been compromised. The attacker gained access to the company’s development environment and managed to inject malicious code into the new version of 7DX. The attacker modified two dll libraries, adding to them malicious code in base64 and AES encoded form.
Cyber Thunder experts are currently conducting a post-incident analysis at Szczygieł Software. Preliminary findings show that an unidentified APT group may be behind the compromise of Szczygiel Software’s systems. Cyber Thunder estimates with high certainty that this group may have ties to North Korea.
The above incident could have a big impact on the media industry, as 7DX software is extremely popular among TV broadcasters and is often used, among others, in to organize meetings or conduct interviews remotely.
In comparison with the latest wave of attacks on TV centers, experts from Cyber Thunder warn that 7DX software can be used to carry out further attacks – according to the Shodan database, more than 242,000 have been compromised. 7DX instance.
“TV centers using 7DX software are exposed to campaigns based on deepfake materials” – says Krzysztof Jarzyna, CEO of Cyber Thunder – “these materials are getting better and better – just look at the recently published graphics generated by AI, or the attack carried out against the Ukraine24 where a deepfake of the president of Ukraine was used”.