How people exploit VoIP

Posted by admin on October 13th, 2008 — Posted in Technology Info, Telecommunication Tips + More

Around ten WiFi VoIP handsets and phones have been tested by top security experts, who say that security problems range from potential denial-of-service attacks to more severe problems that allow “deep access” to the handset that lets a hacker read any sensitive information on the phone.

Problems like this inevitable. So who should sort it out? It has been suggested that if we see practices like this develop as these devices get more popular then the manufacturers will only have themselves to blame when the security backlash comes back to haunt them.

VoIP hacking is the digital age’s version of war dialing - a method of automatically scanning telephone numbers using a modem, frequently dialing all phone number in a local area to find where computers or fax machines are available, then attempting to access them by guessing passwords.

Still there are steps people can take to limit security vulnerablities. Here’s a list of WiFi VOIP security issues, and some useful ways to guard against them:

Many directions of attack:
As the VoIP phones get more advanced, so could the points of entry for malicious attacks increase. Email, client Web browsers, Bluetooth, SMS, WiFi, media players, and image viewers could all give hackers a point of entry. Though users can use open-source as well as commercial tools to regularly test their phones and networks, they’ll ultimately have to rely on vendors to also do proactive testing on these VoIP devices.

Targeting phones in public environments:
For example a Bluetooth scanner could be concealed at the entrance to a major public space and be used to grab user data. It may be best to keep Bluetooth and other wireless features swicthed off when not needed.

Rogue access points:
Meanwhile at the office or on the road, customers will have to always be wary and scan for rogue access points. Hackers will set up access points to specifically target WiFi phones in a business environment as well as at hotels and other places business people like to get together. Good device authentication and encryption can help provide protection here.

Targeted attacks:
Targeted attacks on precise voice-over-wireless networks can also be an issue, albeit one that the victims may try to downplay.

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • OnlyWire
  • Socialize-It
  • Digg
  • del.icio.us
  • Furl
  • StumbleUpon
  • Netscape
  • YahooMyWeb
  • Reddit
  • Slashdot
  • Ma.gnolia
  • RawSugar

No Comments

No comments yet.

RSS feed for comments on this post.

Sorry, the comment form is closed at this time.

« SOBERING DISCIPLINARY WARNING
Customer service 101- What You Absolutely Need to Know »