TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8505

@thehackernews

The Hacker News

Views11,600Post view count
PostedFeb 2702/27/2026, 06:02 PM
Post content

Post content

🚨 WARNING: ~900 Sangoma FreePBX systems remain compromised via CVE-2025-64328, a command injection bug patched in 17.0.3. The flaw allows authenticated shell access. Fortinet links the activity to INJ3CTOR3 deploying EncystPHP. Patch and restrict admin access. 🔗 Read → https://thehackernews.com/2026/02/900-sangoma-freepbx-instances.html