YouTube Twitter LinkedIn RSS

Questions?

What State/Province are you in?

What Country are you in?

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.

Translate this page

 
 
Image
 
ImageImage

Upcoming Events

IAUG Global Education Conference
May 20, 2012 - May 24, 2012
Bookmark and Share
Home | Solutions | Enterprises | VoIP Security

VoIP Security

The Security Challenge: Combating VoIP Toll Fraud

Image

VoIP Toll Fraud Attackers can gain access with insufficient VoIP Security solutions
Click image to enlarge
Image
Sipera's UC-Sec and E-SBC Appliance ensures attackers cannot gain access, eliminating the opportunity for VoIP Fraud.
Click image to enlarge

A small chain of “Mom & Pop” retail shops gets a phone bill for $500,000, an increase of 400 times its typical monthly bill.

A service provider receives interconnection charges totaling more than $1 million for termination of long-distance phone calls from one of its partners, but there are no corresponding revenues to match these calls.

The telecom manager for a multinational enterprise discovers a spike in international calling volume and charges, but many of the calls take place in non-business hours when no one is working. Worse, the volume of calls during business hours is starting to max out the network capacity.

What’s going on?

Each of these scenarios illustrates how Voice-over-IP (VoIP) implementations, if deployed with inadequate VoIP security, can result in VoIP fraud.

VoIP fraud is the unauthorized usage of paid communication services (such as international calling) charged to an unsuspecting entity – whether an enterprise or service provider. Beyond the unauthorized charges stemming from toll fraud, its misuse of communications services can also eat up network resources, leaving them unavailable to legitimate users.

Exploiting VoIP and Unified Communications for toll fraud

There are three main areas within an enterprise VoIP or Unified Communication deployment that are most vulnerable to exploitation:

  1. PBX/Voicemail/Application Servers
    These communications systems are particularly susceptible to security breaches due to their often weak password protection. Furthermore, policy enforcement on these systems is limited, allowing redirects, transfers, and forwards to long distance and even international toll numbers without proper authorization.
  2. PSTN Connectivity
    Attackers typically exploit the fact that Session Border Controllers (SBCs) or Media gateways accept calls from anywhere and route them to the service provider with limited or no authentication. Sometimes even service providers employ only weak authentication on SIP trunks, and the Session Border Controller can be bypassed.
  3. User/Device Authentication
    Enterprises deploying phones over extended networks in low security networks without strong authentication – including lobby phones, guest rooms, and the Internet – are especially vulnerable to exploitation. Without strong two-factor authentication, lost or stolen phones can be easily misused. Once attackers gain access to a misplaced device or are able to guess or "brute force" weak credentials, they are ready to make calls as the authorized user. This type of attack raises further security concerns, as attackers can also exploit the user identity associated with the credentials.

Combating VoIP Fraud and Unified Communications Toll Fraud

UC-Sec Appliances

Sipera's UC-Sec Appliances offer a range of features to secure unified communications, including VoIP security. Learn more about our Enterprise Session Border Control.

E-SBC

The new E-SBC, Sipera's Session Border Controller, provides unique functionality to integrate into thousands of SIP telephony envrionments rapidly. It alloys you to terminate SIP Trunks without the complexity associated with typical Session Border Controllers. Learn more