[VoiceOps] New SPA2100/2102/1001 exploit in the wild?

[Ryan Delgrosso]

Hey all,
I am seeing my fraud-o-meter tick up as of yesterday and it all seems to 
be driven by accounts attached to these devices. We have taken measures 
to start locking this down but I am wondering if anyone out there is 
seeing similar.

It looks like somehow legacy devices that have been deployed for 5+ 
years are having accounts lifted out of them.

Does anyone have info on this exploit, or if you are seeing this as well 
and want to compare notes feel free to ping me.

Thanks,
-Ryan