|
|
|
VOIP-Specific Attacks Not an Issue Yet
By: Paula Musich
2008-03-28
Article Rating:  / 7
There are 1 user comments on this Network Security & Hardware story.
VOIP-Specific Attacks Not an Issue Yet (
Page 1 of 2 ) Experts say there's been very few VOIP-specific attacks to date, but they expect that to change as VOIP ramps up.The next target hackers may turn their attention to is voice over IP, as it
is increasingly viewed as a killer application.
To date few hacks of VOIP systems have been publicized, although a handful
have been targeted at consumer VOIP services from the likes of Skype and
Vonage. Luckily, enterprises that have installed VOIP systems with security as
an afterthought have seen few attempts to compromise the technology.
"That's been a big bogeyman, but we take great care in securing our
networks from any threats, and we did that before we put voice on our network,"
said Dave Duchaj, senior vice president
of Information Technology Services at First American Bank.
For more on securing VOIP systems, click here.
Which is not to say that vulnerabilities don't exist in enterprise VOIP
systems.
"You'll see vulnerabilities, but we don't see lot of evidence of real
attacksyet," said Mark Collier, chief technology officer of SecureLogix, a
San Antonio-based company that performs security assessments for enterprises.
"We've been brought in a couple of times when people have had real
attacks, but they are pretty uncommon," added Collier, co-author of the
book "Hacking VOIP Exposed: Voice over IP Security Secrets and Solutions."
As enterprises come to rely more heavily on VOIP for their business
communications, it's only a matter of time before such attacks gain steam,
believes Dave Endler, director of research at 3Com's Tipping Point unit in Austin,
Texas, and co-author of "Hacking VOIP
Exposed."
"There have been more vulnerabilities discovered over the last year
than in previous years. We're seeing more issues being found and fixed by
vendors. It is becoming an attractive target," said Endler.
|
|
�������xr80�VӮcV%UȖ\ִey,UF((�ئH
Iy�ω��o&�nZ(KU%�L�ܐH$~ 'I"�nZΘt\snS?úO
Y'Tw>{�&(ˑԫ�1m3�HnwݶN-gP'^��> \?g3Q;Y|��"E%�k4ً�ϣшqG/П�ad�^x/4�;U'i3[<"C5n�CU�VekVCl�v�i!rs�!�gߎ�z$iRvn8Gd jI:*�`iTi11܋�]Lч�@ڮ�S.�PVfFԲ;g�uGg�cGMҳ�GCL�H��6=~0[��QC9$�7��\j?�ypȳؖ�q�p\.ܪa?WuomzV[u�cϝ;�{I�̖%X䈍YR'`>6O(L|@��ɤ:ģZ�r$˺79h4öۼC�ٰo5T:Ԫr\�ˇJy/^[�,Te,oFu�j�vz� `|�`h-v�u]+h0�u=;yX} � Vb;�}�"
@D%\.�I"0i�5&�ttڽ~�H}AFI?j;|#rX<,hv��$걑�f1<˧H0CF^8rrnuo]_]{-o\[gH>߉ekby�1�=�b Jw�!=Y�W%Mٽ鑳5i>O[=$#t: +?;V�'_ZU/7#?o!aj;d�Pp9Lwjt(H�?5W-2 ୫'�Sdp*~v\��C�J�ݖeL_ȻX_��KŗG)H7�3ǚ��-#0ɔc�Pu��t:9�CsڊfC�t�-Mn
"d��Li��&ͭZ��p-Alo�
K��(�H�)5?�&Țb.L2o<|)�m̗U/d`(AK/g-
�5f:�]R$y3DD�ȝ g��/3�/�r.#}��h8y�WҽTws
�iغ�T09;�N>]-7+De,,ɺ
s5-wnz�;\g\?k5�[Mһ^��ZxXaZ`A�). Ƹ@]�Է7�J06��_)Ab�/*rG�h��2ud8��İ:AGA�ticšhϭ@7&��h`C}ҍ:L� ���{ݣn]='tnYXŞ�*LRVi`�I��A�6]�LR}>t9q�PhQ0<�szL,)σ�5[ѽ�:��?@����6��x���Be^~�}�̢��1O�[>=�`Mtև
&��QsnPB�fԁ!~9.Wb�&;A/�tSt�P^!͙;eL��� o¯u]��K�hNBUTC_J+8從2MS�|(�n^ßݴ�#>d .�z*H(p�0��ѿ{6yBbOx�;�r+kF*+)ܳP>Д
+<�+1!�I�/�tzS\�&)9Aw
���ew貟F=�ĿL?ͺz+YF^u 9R@{4�m�
�246@Ȱ\k_X5QW0:���,�)��iY�l`cy1Csz�QIä7
k���SkdQ6qoaQ54 Kۊ�٨ߪ%M*ǚvX�>ڹe��K���(�)m�ʥʫ�;ug�4-=�f~o��0=t�ȯ�L�|BJm�w6q� M
sOЭ,���p��ZU�01@�/��ŵAb=��{1tJ.,]q:tgqaٿXZTZkʮtِ�hVp�
;�fk���xF3�f�ԑeSPݷuIA̫%U�Tw֠~3�KJAUc?&q?�|��2ex�L,`_#l̠::7�I�Ҙ!Hr����M~��ά!VӐPQ@1�"^Ou/��5GaAܧ^۬�vB5w�.Bāh<.�Z6[Ro=>>ئTQ݂*6�E)'>E�5 c�d��]D�z�퀇�4`H���A�Db������B��U.(L0�:J�r�2b,X[���T�B$⦼6t�߂bIta1�:C�5�z_{=2dB4�^e�a�<�{LRT�j%F��ZYUKZTP+
:?#UFQH3j �h�/OP�ԁd��ˬ5?�g�vo�ܮ;KG~g^l^�L�av"O`��%O-p�2HU>XC}@�1Sde`S�yt(�d*��䪢#?݀�έ�Ο�#��Џ]���!.��Ծ �X�� A�7+(SӞͥjXX%�RO�.x[zGc�M"���9^R˶(SL
@(8��u2|[\Y3
Q�|7Z0bƏQ�ajX[�T��}fW�c7g)h�"RkF&:�FdH�tΈ+6RКj*4kqvϷ�
h#�քY[ў#WX�
xV IQdSEt�jC<ϤMNU)HW<��N�M?ܛZ��`�%ͳq58=_PpfGi�
�}gQ�!p<7L�M�"��]մRb.�_��
s*?�ʀkG�2gdQ��HV�z\ 4�ex.�uM�_
4y
�@QFk�oZ,+eyX�S/�
JU-��A^Mo6=HT\SGV�:8�{Ic#&�a\khkc_uO(�Eōj4�
Jx7
�\v�-[&�v�aN�0qR3ڛ5^,@�M|KZO���q4wI#⩬y0.Ɨ!��s�kg O̦:z�f3&t]4. �y*1�a2N4ۄ
knI,G: �a�T�Cnƭj@iUI+T�Z}�����2AatA�*�}/*\F�IvSf
Ϛ���8?@|=���^%5͇RiE�mT)ܓNt,ӄ1zA�b�Q�=Y�@r�v�jT
���eP��.8N}+�tS��Z1�wOXO\dK!M�o$DDOC�V�gX&1W+�ʬڼ _3Z c�S7��=NL" }M
WI�@��NEw%]�7f�4�}ֽKgN��1Aq�qnow/���QAZ={q O>./ߎH�ݏMi|hc4.[mj2�i&A)��p�]�2|̮�Wf}Aц.Zg0BF@�ɁtnG4?/ŗtO�k~J\/[R1~JdF1M�qpyU8)DEq��~|ly\3amG�'���L=\=8�0fK�iW�f@ tkN,�S�VXKR!�}&�>C�mP6h�M؆_{+^�+[�Ě_�f·B!|Jlj9l0��`&0�9ϫb~�]4zxXtwX�u@ڎ'���9#7<;^bG�/syBO+f8��-,]�:]�_��_��zϜGoIM2�1B?1Pݘ�~�h='Fs) o.�(�cǩm:{@�D'oV8_OKoҽ{ᧅ}E��r7t3V*9$�XH�!Hn
e_"2gNIJn/:��}L9z�d<
,f��Jf�z7K�i^xΠt4w���{�x!F.50/s1T�7?_gpKw�
�z�>+-R!EkE��wW�UK��㒏�"�E�'%:#ڮ/=ا�ﭐkY\�xlS֛�12�~�OkO=�re�'mMN���i���zc{ƹ�39���ោJ6�wVp�*gcc;/�F#%g�OS˱6m�@|Րr/�hZ1i�`jcZop8|+؊wfo_��O�_eMr��sf2i�1kp?_S;��ZR| � �.��i{\na��'x�{7d\ڊ�}�aK~~�&v/ilp85xnV،̳$tYSZ��Lt/rkW,�}?w1�:��}�A3ED��-&�h[Y!�ҩ;�mT�P+X}ވM71ZQy>�}H,j17�&q!�,w%��y�D.�1um-4g?Kx�X,05Pue"R-#F'zo>�SƉ��w2�g@=O�u�3)[)`bY;fbN:+Jmf&0pa�~x3`k`D%:�{.ÏoF�Zv��L8�y0q�" M^�>v�-'֒GBI�QR�(bʥ[3"6
*��/ёLU㎏+VݽbgLd�J^I?�xB�^\V�k{�܂hItx[)U�j)NS44EkR1$$w7y2�R&#rBy2dB} (aR(`Zg�6ߗ>x=.@#�[{6L9A($B�X3(4!l$l;�wo*LM|��6�
�xel[a%I`a�g�M(;)w!sv�x0 [\!kkkk彆ŒR9|0W/A.$#7p�WWU�O�c8c-z}�ܻ|fb
�%=R2���ueI�@��I� `uk/~�)�kN�!#��_�f�O)I�)�,�w_O�kl~b��}{$PX̡3n9��WteϧClnۨ7tS*iU&**oF=?i7�ZOVU"#nb1EKl���@.]h��}L70&�fS\]!^�iwT60I�8{7�~�k�ʁV=P�,
xE߸֊�[NېiΞCm�QiH��:�[���&�"�r\餷�GgTGH&$R(��M�`�/bTy
\� ��>)fFllz^C�`5�olz^C얦M` /J� }�+n'-浻sx"(fU'j"kn0u<пT<�5&p�ڢ
R~DX6�C'�
GN�dn-)RjX�z>I�Tnp=jh�pW2J��`
�*e9
JI-dz�y=0|ksݗǮV5U*�5�YQ�7���X_%�mÎ5o�I�\�':�g�0RI+�[g?3�0pX*AE�L>
)?g�e��O}�K;TQ`o3跔�1�ߒ�|t|��3�z9}Z<ۭ��|컣��2![ �(�R��|%5F�[q{e
�>:bɝӹ#ħOtl&nUZ�TJ
z'ϋ�W[ ByFsgy�}9~ȋ:hO1�V9�\d3+nіTm}yVң]��F
bt��>s�K?��� �::�IoF
KG5�`?b~m���s�Y0�x+jO5�ZT�rMu��,?t1ц]ֿ�-'|͌V:m�F�4�x�c�')<Đq$
� Ĉ[ bU&wܠ~z�*ڟO�je^fs�B
�=Nl~G�&ݴ�*�x4�;-[6Kg�Zź't�Mx37aT0�|L!D�}x�+�VzK"?{|�����̋XL�t4*$:1�6ɝ�;B&s'؏p�KsS�'BEnX�{+$ʽO��g-"vFf.B�T0
"!�`뭛VWF\nz�~uC��@�ǣ;Gym!����y;D�?�qLù_
-�>a:$�.+JAW)6ǎ��:�|e1�uUֽ?C.7,Mh[�:�L8!�i
oZ˞r�0�Qݾ ?1!��@��L-GaLIAX#�hBG�H[�~g^q79k �45A!<���\A~�cs=�y6")(Ĵ0E5^M
&"��cs��l�1�نRǠ�!�E��9��z!K��q�yy�<}w@Ĩ�E�,��D��"}�nAm??'~��e�KHB}�s�^6�XLi0q�>0"(S[��]ă0>]qP/��1k�(pj�W�,ywF7`C'[�j�E9�Y|ob{�` ?*غ9�Pr��M�p���4ħ�EO\=4[E�EFPkFP{F5_/?m�62ʻP(GJ/o��S(?]_~�9���חsv3Wo73ʡ}Q�og^k/3^_~�/2w2�d�;Y��v�?�t`w>;��d'e/?As(?(�#�坌rˌ�KˌB�fȟ.ȗn|�ʠ+x*k�{�{��3�#��埲a|2 )�7P~U�{A7MF7@7�ug+\8=R�dr�z)A^d_�~*%YF!gȳ���+z7^˰s3ce_/ˀq�}um&�R+��]Q%5-{�[I�2}ח�
c|U(X2M*�#(,8%Y}MNJ�4tk 7b[y�$=)>w�槤I��xո]@&JRo-cENj9.~QxdB$h{�dZc+m�DuL�QU#�|.y��|e8�NtO<1 }^fҖ1��.? v�d{r��.�v�ZzV�n��_q�L�?&7Sw�.�pqk;ُϋGkw�Օq@�Af~�%k"_'OxVf2�AͷDV�N)pB ��,RKtAc,>(NW!45EL=C>fp�Oh{�sn ~��,@���$5͇RiE�rT)ܓN�0mFp@Dd�1<.S5YUdJ.'�jeT�L��3DA�zg�
�l]{ۦJ�̾ZCO�3CX)ḇ}̺l[�%��.�@OgÙ�,G ?�3Εy�
Ʊ�تG�ШscOˡ�B�~�2R�lS}&Ճoϒ 0� hJ/.ӡGx�#K�Q,Vk�
5t0=_2nu�'�*F'B.N/�ɱF?[ >so�R:=bՇ.^"�(�luy9M"�r"�wӽ&��"�n+t�Ů[YڊV�Vݍ�ΊK�qe��xL´kDWtgm&�Ĥ��rG[[z`L�,i`Erb��GU�Z�#H8݈8�9p=`iMx��_�-^0��]�P3xX8
7t�ճNWmb
v[ʮF)\{Dœj@@rveN�ĝ~M70ƚ19"LP�O"K w`/&c�o�;4m���1�/�D亂mv���Kߞ1�3`wtg�5Wg�%!"q0q?K*_yl�x$Qh/!I'�kR����`躷O�
챧04L6 qS)�,#!1苄I M&Z�{J�F!-\�r>]&р]�Zx;���VX#e�
Z*5]z�I�L\�PxUg, Sq}(!1Uϑ�t(,�Ma
���f�Y{6Dπj�
fyyU�� (pd+?��T@|-
%��Vj(t��I�cS�&x=��S.ڍ,~='c:9ebV)qd�GBN�<}q?٢�uK�ğopm�.�;�+C��O1ΪT��U|��>cx w
65T*:�=_�v{[>/'R`PM֦2R8WD
�Q)YBAł?�Vg;{Ea�p}"�Q�!*m^g�͜
ŧS+o[wt%(�5x2;n�6�m˟�~Hױ�Q
_b[0~OX��+JbA,\�n2?>�i3|��@ =( of8.�`y%K@4�4zW�
78ǩk[Vmx�~{ݾŀ�g�
�k�OTg�{�U\M)�X7m#*
XGڦZ
QaW�~nb=y螉=��ve+{B70*
byx Uf}')VS/賻͑?q*g\`�ǐy6��x�L�
2kV*w�NVtƦ�I21qzr�.{aL(~r[)CU:M\"G�Zi/%!zRM�S9Q��2kF�s+&|Ʒ�R2ұeRZ`l/Z?]kA(��
|
Network Security & Hardware 
