At lunchtime I left a request, now I received an SMS with information that the money was returned! Great! But the nerves were well spent!

It's simple - someone used your data from the multiphone.

My number is registered as a physicist. A friend approached with the same problem - he has numbers as registered on the legal entity.
Call details.
01/09/2013 12:25:36 6701119448 00:01:00 hh:mm:ss Outgoing Multiphone
50.00
2013 12:27:36 78213340330 00:06:00 hh:mm:ss Outgoing Multiphone 900.00
01/09/2013 12:27:56 78213340330 00:19:00 hh:mm:ss Outgoing Multiphone 2850.00
01/09/2013 12 :27:57 78213340330 00:06:00 hh:mm:ss Outgoing Multiphone 900.00
01/09/2013 12:27:57 78213340330 00:07:00 hh:mm:ss Outgoing Multiphone 1050.00
01/09/2013 12:27 :58 78213340330 00:07:00 hh:mm:ss Outgoing multiphone 1050.00
01/09/2013 12:35:39 78213340330 00:13:00 hh: mm: ss Outgoing multiphone 1950.00
01/09/2013 12:37:10 78213340330 00:12:00 hh: mm:
ss 2013 12:38:11 78213340330 00:12:00 hh:mm:ss Outgoing multiphone 1800.00

The well-known tool scans IP addresses (port 5060) to look for holes and “standard” Elastica passwords… They need to be changed all at once… This is one side of the issue… There is another… today on Android, and as a rule, “rooted”, which in most cases makes it possible for “interested parties” to receive these same SMS in various ways, including bluetooth ...
And there is a third - people, as a rule, the most dangerous and “leaky” ... :(