Update 5/3/2014: CudaTel issued the following Tech Alert:
On April 29, 2014, we discovered a vulnerability in which fraudulent international calls could be established by an attacker. We isolated the incident to a handful of customers, and directly contacted everyone impacted.
On April 29, 2014, an automated firmware update was made available to all Cudatel customers running firmwares 2.6.6 and later to resolve the internally reported issue. May 3, 2014, secdef 2.1.12437 was released to patch units running firmwares 2.6.5 and earlier.
For maximum protection, Barracuda Networks recommends that all customers ensure that their attack and security definitions are set to On and to upgrade to the latest generally available release of the firmware and security definitions.
##########
On April 29, 2014, we discovered a vulnerability in which fraudulent international calls could be established by an attacker. We isolated the incident to a handful of customers, and directly contacted everyone impacted. Additionally, on April 29, 2014, an automated firmware update was deployed to all Cudatel customers to resolve the internally reported issue. No further action is required by our customers users at this time.