As the number of businesses using VoIP increase, so does the threat from hackers for financial or malicious gain. VoIP vulerability research done by Sipera Viper lab and lead by Sachin Joglegar identifies the following threats in 2008.
Remote Eavesdropping - Listening in on VoIP calls is MUCH easier than with landline PSTN telephone networks. If you are asked to give your social security number or other sensitive data over the phone, ask what kind of line they are calling from.
VoIp Hopping - VoIp hopping can enable a PC to mimic and IP phone, giving hackers inroads to access the VoIP system.
Vishing - Like phishing your VoIP number could be hijacked or a bank's etc. One really won't know where the call is originating.
VoIP over WiFi - We have created a 'perfect storm' of hacker threats, Joglegar says . We know VoIP is insecure and we're going to put it over WiFi which is insecure? The hacker does not need to physically access a network. With a sniffer or other tool a hacker can get into a wi fi network form outside the network. Easy pickings.
What can you do to lessen the threat if you use VoIP? Check the default security settings. Most folks get the device, pop it out of the box and start using it. " No one goes into the default security settings and they are usually weak, "says Sachin. A quick check can lock down the device and make it less likely to be hacked.
