Expert Unveils 'Scary' VoIP Hack

Posted by Zonk on Friday November 23, 2007 @03:11AM from the keep-it-close-to-your-chest dept.

Kurtz'sKompund passed us a link to a Techworld article on a frightening new vulnerability for VoIP. The UK's Peter Cox has put together a proof-of-concept software package to illustrate the flaw, a program he's calling SIPtap. "The software is able to monitor multiple Voice-over-IP (VoIP) call streams, listening in and recording them for remote inspection as .wav files. All that the criminal would need would be to infect a single PC inside the network with a Trojan incorporating these functions, although the hack would work at ISP level as well. The program can index 'IP-tapped' calls by caller - using SIP identity information - and by recipient, and even by date."

2 of 103 comments (clear)

Min score:

Reason:

Sort:

Holy hyperbole, Batman! by plover · 2007-11-23 03:12 · Score: 5, Insightful

Not only that, but ethernet data traffic can be read by someone else on the network, and wi-fi traffic can be monitored by someone even without wires.
In other news, experts have revealed that water is scarily wet, the sun is frighteningly hot, and occasionally rain terrifyingly falls from the sky. We'll interrupt your surfing with more news as it unfolds. Meanwhile, please continue to tremble in fear of the obvious.

--
John
Wow by telchine · 2007-11-23 03:13 · Score: 5, Funny

The german police will be pleased!