Overlooked VoIP Security Issues?

Overlooked VoIP Security Issues? 42

Posted by Cliff on Wednesday April 05, 2006 @09:30PM from the missed-vulnerabilities dept.

penciling_in asks: "Voiponder is running an informative article identifying VoIP attacks, which are applicable to current systems but lack public awareness and are, for the most part, misunderstood. The author's primary purpose is to 'discuss two of the most well known attacks that can be carried out in current VoIP deployments. The first attack demonstrates the ability to hijack a user's VoIP Subscription and subsequent communications. The second attack looks at the ability to eavesdrop in to VoIP communications.' This leaves me begging the question: What other not-so-publicized VoIP security issues should companies be watching out for?"

Overlooked VoIP Security Issues?

This discussion has been archived. No new comments can be posted.

Search 42 Comments Log In/Create an Account

Comments Filter:

Oreka (Score:4, Informative)

by henrih ( 966455 ) writes: on Wednesday April 05, 2006 @11:40PM (#15073156)

Disclaimer: I'm lead developer on Oreka.

You can very easily record all RTP traffic on a given ethernet span to wav files on disk using a sniffing tool such as http://www.oreka.org/ [oreka.org]. Most people don't use encryption yet in the VoIP field. This will catch SIP, H.323 and Cisco Skinny traffic, i.e. most of the existing traffic except IAX (asterisk) type traffic.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Overlooked VoIP Security Issues? 42

Overlooked VoIP Security Issues? More Login

Overlooked VoIP Security Issues?

Oreka (Score:4, Informative)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot