Overlooked VoIP Security Issues?

Posted by ryuzaki0 on Wednesday April 5, 2006 @01:30PM from the missed-vulnerabilities dept.

penciling_in asks: "Voiponder is running an informative article identifying VoIP attacks, which are applicable to current systems but lack public awareness and are, for the most part, misunderstood. The author's primary purpose is to 'discuss two of the most well known attacks that can be carried out in current VoIP deployments. The first attack demonstrates the ability to hijack a user's VoIP Subscription and subsequent communications. The second attack looks at the ability to eavesdrop in to VoIP communications.' This leaves me begging the question: What other not-so-publicized VoIP security issues should companies be watching out for?"

2 of 42 comments (clear)

Min score:

Reason:

Sort:

Any type of DOS attack by RingDev · 2006-04-05 15:05 · Score: 1, Redundant

If you are only running VOIP internally, it's not such a concern (although bandwidth management may be!), but it would suck to have some Russian grab your company by the nuts with a zombie attack on the pipe that feeds your VOIP server. Most companies out there would put down time on phone systems as a higher concern then evesdropping.

-Rick

--
"Most people in the U.S. wouldn't know they live in a tyrannical state if it walked up and grabbed their junk." - MyFirs
1. Re:Any type of DOS attack by RingDev · 2006-04-06 01:22 · Score: 0, Redundant
  
  Okay, some mod need to learn the meaning of the word Redundant!
  
  -Rick
  
  --
  "Most people in the U.S. wouldn't know they live in a tyrannical state if it walked up and grabbed their junk." - MyFirs