Grandstream GDMS Portal Compromised

This is a courtesy email to inform all of our customers and partners utilising the Grandstream GDMS system to provision their equipment that the GDMS system itself has been compromised in the last few days. Grandstream have sent out an advisory which we have linked to in the image below: https://www.securevoip.nz/gscompromise.png We recommend that any partners who use the GDMS system immediately update all their passwords as they have likely been compromised by hackers. There is some discussion on the forum post below if you want more information. https://www.reddit.com/r/VOIP/comments/1gxp29l/grandstream_sends_notice_of_gdms_security_incident/ Please be assured that Hero's systems have not been compromised in any way and this exploit is specific to the Grandstream GDMS platform which we are not affiliated with in any way. However, we do know that many of our partners prefer to use GDMS instead of the Hero Phone provisioning system. We advise that if customers are concerned about the security of the GDMS system that they switch to using the Hero phone provisioning system instead. We cannot comment on the current state of GDMS and if it is safe to continue using this going forward. Unless there is a specific reason to continue using GDMS we recommend in the interim that affected customers update passwords on their accounts and switch to using our provisioning systems instead. We have seen several fraud alerts in the last 2-3 days all related to this exploit and our anti-fraud systems have done a good job of identifying and shutting down overseas calling from the affected customers. We have also seen 3rd party platforms like 3CX impacted due to GDMS being used to provision handsets on these other platforms. If you have any questions feel free to reach out to our team but keep in mind that we do not have any more information on the Grandstream Portal compromise other than what has been reported above.