Bugging Catches Up To SIP Phones

Posted by kdawson on Monday August 27, 2007 @01:04PM from the excuse-me-i'm-already-on-a-call dept.

SkiifGeek writes "After news at the end of last year that mobile phones could be remotely eavesdropped, and there being a long history of remote eavesdropping possible on normal telephones, it was only a matter of time until VoIP devices were found to be eavesdropable (whether intentionally or not). In the last week there have been several exploit code releases, and it seems that some vendors who chose to write their own SIP networking stacks are at risk of their devices being easily eavesdropped on."

2 of 70 comments (clear)

Min score:

Reason:

Sort:

Zfone? by hedley · 2007-08-27 13:44 · Score: 5, Interesting

Should VoIP users consider using Phil Zimmermans Z-fone? possibly a bit more secure than what we have now
I would wager.

http://zfoneproject.com/
Re:Combined with WiFI and no encryption by muonzoo · 2007-08-27 13:53 · Score: 5, Informative

Somehow you didn't notice section 26 of RFC 3261 or RFC 3711?
There are many interoperable, secure SIP devices -- the industry chooses not to deploy them for a variety of reasons, some good, some bad.