Hackers Accessing Your Company Using PBX
Many corporates have implemented firewalls as well as stringent anti-virus and content filtering applications to reduce attack and fraud. The PBX, however, remains a significant loophole. All the perimeter security in the world can be bypassed by a poorly configured authorised or unauthorised modem.
Indeed, as a leading communications publication put it: If you want to do real damage to a business or institution, telecom infrastructure is probably a better target than the corporate LAN or Web site. PBX hacking may not sound glamorous by comparison with elite Internet penetrations, but it can be just as damaging. Attacks on PBXs, ACDS, voicemail, voice-response units, and other infrastructure can bring down a company: make it unable to function, expose its secrets, damage its reputation, burden it with telephone charges and the cost of re-provisioning and repair after damage is done.
By not securing the PBX, companies risk a number of costly problems.
Poorly configured authorised or unauthorised modems enable an attacker to do war dialing exercises on the PBX.
War dialing software allows the hacker to automatically dial a range of numbers until it finds a fax or modem number. The hacker then uses the modem to access the organisation. It can also identify the management port on the PBX, which he can easily hack into to get free reign over the entire PBX system.
Once in, the hacker can wreak chaos. He can change voicemail messages and listen to messages that have been left.
For example, he may change the voicemail message left by the CEO for those trying to contact him, or he may listen to a highly confidential message left for the CEO concerning an upcoming merger.
Once inside the PBX, the hacker can also create a virtual extension, giving himself an outside line to use for international calls, thus being able to run up huge bills on international calls.
Apart from outside attack, there is the very real threat of toll fraud from within the company if the PBX is unsecured. This in turn can lead to further external attack, where for example a hacker can piggyback on an unauthorised modem that an employee has brought into the organization.
If employees find that they can no longer get into their favourite sport Web site, because of newly installed content filtering, they can simply bring in their own modem and use the dial-in facility - but using the company's telephone system.
Alternatively, he can use a built-in laptop modem. Not only does this create a back door to circumvent company policy, but when he dials out a hacker can piggyback on the call, thus bypassing security on the data network.
Employees often use the simple tactic of dialling internationally over an unbarred fax line if their own desk telephones are barred.
In the last month alone four different companies that between them have run up toll fraud bills of 4 million - in these cases, all unauthorized international calls.
Another problem companies and governmental organisations are more aware of since 11 September is criminal or terrorist activity within their organisations. They often also battle against unscrupulous recruitment agencies that regularly poach their staff.
The answer to all these problems is a PBX security system that sits between the telecommunications provider and the company PBX.
PBX firewall and intrusion detection systems effectively solves the last back door security problem on the data network. It logs all call progress information and characterises all call types. Basically it gives the same visibility to your voice network as your data network.
The system can terminate all calls made to certain telephone numbers, for example, competitors or even known criminals. It can also bar all incoming calls from certain telephone numbers, for example, recruitment agencies.
It will identify all calls made using unauthorised modems, and - depending on the rules set by the company - either alert the administrator and terminate the call immediately, or simply alert the administrator.
It can also terminate all voice calls over fax lines, thus stopping phone abuse.
This is all done in real-time, and is not a report that you get a week later. For example, if you suddenly see that a number of employees are all dialing the same cellphone number, you may want to check it out. Often it will be a prank call that is doing the rounds, or a vote line, for example, and this number can immediately be barred to prevent further unnecessary costs.
Perhaps most importantly, the system will enable you to see patterns, which will then enable you to put the right policies and preventative measures in place. This would result in significant cost savings.
You will find much more on this topic at WorldsLargestNetwork.com
| |||||||
 | |||||||
| |||||||
| |||||||
| |||||||
|
WorldsLargestNetwork.com
