Story image

Who's listening? VoIP systems vulnerable to hacking

18 Dec 15

Businesses need to ensure they have the appropriate security measures in place to avoid being targeted by cyber criminals hacking into their systems.

That’s the word from MyBusinessVoice, who says VoIP systems are no exception, and businesses to seriously thinking the security they have in place.

“While VoIP is a more efficient way to communicate and more cost effective, it is after all using the same network as your email and other internet devices,” MyBusinessVoice says. “No doubt you have experienced spam and cyber-attacks in these areas.”

The company says recognising the threats directed at VoIP installations means businesses can then look at ways of reducing the risk or, even better, eliminating them.

“A very common threat is eavesdropping; not someone in the next cubicle at work, but someone who could be on the other side of the world,” MyBusinessVoice explains.

“When using VoIP the voice is converted to data and transmitted, with eavesdropping, the packets of data are intercepted, converted to a WAV file i.e. back to sound, and then listened to,” it explains.  

In other words, all conversations could be vulnerable.

Hackers have been around a long time, always looking for new avenues to gain access to systems and VoIP is not immune to them, the company says.

“If your system is hacked the perpetrators could be helping themselves to free phone calls, at your expense or they can intercept your phone calls and redirect them for some other purpose,” it continues.

“If redirected you have no control over what is happening and this could be detrimental to your business. It is also possible the increased traffic would slow your whole system down.”

MyBusinessVoice warns if a business has other systems, such as billing and customer information integrated with VoIP, this could then be at the mercy of hackers.

“Just as you have various security measure in place for your property - sensor lights, alarm system, guard dog, security firm, you need to have layers of security in place for VoIP and all other internet based systems,” it explains.

“First and most known form of defence is a firewall, hopefully that is already in place but it should be assessed as VoIP-ready and be strategically placed to thwart internet telephony attacks.

“Along with the VoIP ready firewall ensure you have up-to-date anti-virus, anti-malware software and set it up for automatic, regular updates,” the company says.

MyBusinessVoice says encryption is an absolute must. “Usually VoIP software has this built-in but you need to make sure and if it doesn’t, either change software or add software to provide encryption,” the company explains.

MyBusinessVoice suggests business purchase VoIP phones, which are designed to avoid threats and have better voice quality.

“To make all of this easier, choose a reliable provider with a good track record and have VoIP hosted,” it says. “My Business Voice takes the time to assess your requirements, understand your business and provide you with the best solution.”
 

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
The disaster recovery-as-a-service market is on the rise
As time progresses and advanced technologies are implemented, the demand for disaster recovery-as-a-service is also expected to increase.
Apax Partners wins bidding war for Trade Me buyout
“We’re confident Trade Me would have a successful standalone future," says Trade Me chairman David Kirk
The key to financial institutions’ path to digital dominance
By 2020, about 1.7 megabytes a second of new information will be created for every human being on the planet.
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
NVIDIA sets records with their enterprise AI
The new MLPerf benchmark suite measures a wide range of deep learning workloads, aiming to serve as the industry’s first objective AI benchmark suite.
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.