2 Contents Introduction to VoIP Fraud... 2 What constitutes VoIP Fraud?... 2 Who does VoIP fraud affect?... 2 Where does VoIP fraud come from?... 3 How big of a problem is VoIP fraud?... 3 Types of Fraud... 4 Arbitrage... 4 Buffer Overflow... 4 Bypass Fraud... 5 Call Transfer Fraud... 6 Domestic & International Revenue Share Fraud... 6 False Answer Supervision... 8 Location Routing Number (LRN) Fraud... 8 PBX Hacking... 9 Phreaking... 9 Roaming Fraud... 9 SIPVicious... 9 Shell Companies Subscription Fraud Toll Fraud Unallocated Number Fraud Techniques for Fighting VoIP Fraud Analyzing Call Detail Records Call Blocking Call Routing Legal Action Session Border Controllers TransNexus VoIP Fraud Detection Solutions Summary About TransNexus Works Cited... 15
3 Introduction to VoIP Fraud Voice over Internet protocol (VoIP) services transmit telephone calls over high-speed Internet connections rather than over traditional land-based telephone lines. They do not usually travel directly from a caller to a recipient s computer but rather through computers belonging to several layers of intermediary VoIP service providers, or wholesalers. VoIP is about convergence, saving money and resources. However, these types of systems also create more inroads for attack. As VoIP has become more accessible and popular, security threats have grown as well. The most prevalent threats to today s VoIP deployments are rooted in traditional data networking and PSTN attacks. Today, VoIP devices are the primary tools used by fraudsters. In the first half of 2012, 46% of fraudulent calls were made from VoIP phones. 1 What constitutes VoIP Fraud? For the purposes of this white paper, we will consider VoIP fraud to be the use of a VoIP telecommunications network with the intention of avoiding payment. In that sense, the payment may be incorrect, entirely lacking, or the attempt to force another party to pay. We will consider both illegal activities and those activities which, though technically legal, may still hurt telecommunications companies by taking advantage of systems and vulnerabilities. Who does VoIP fraud affect? VoIP fraud can affect any organization which uses or sells VoIP services. In most cases, the fraud target is an enterprise. Most enterprises never realize that they have been hacked, refuse to pay the fraudulent charges and threaten to switch to a different service provider. The SIP service provider has little leverage over its international long distance vendors and is left to cover the bill. However, in some cases, service providers will demand the enterprise pay for fraudulent charges. This was the case in a 2009 when Michael Smith, a small business owner in Massachusetts, found that someone had hacked into his PBX to make $900,000 worth of calls to Somalia. AT&T attempted to sue Smith for $1.15 million to recoup the cost of the calls and interest. Though AT&T eventually dropped the charges, a spokeswoman for the company maintained that they had been entitled by law to collect the amounts owed, and that Smith should have put more safeguards in place to protect his phone system. 2 VoIP fraud can and does occur in any industry. Certain industries, such as banking, tend to attract more fraud than others. A recent study from Pindrop Security found that nine out of the top ten banks, and 34 of the top 50 banks had been victims of call fraud. 3 1 The State of Phone Fraud: 1H AT&T Agrees to Drop $1.15M Suit against Phone Hacking Victim 3 The State of Phone Fraud: 1H 2012.
4 Where does VoIP fraud come from? VoIP fraud comes from all over the globe. Traditionally, Africa has been a Hot Continent from telecom fraud, because the termination costs are very high and regulation is not as stringent as in other parts of the world. However, a 2011 study from the Communications Fraud Control Association (CFCA) found that the top 5 countries from which fraud originates are the United States, India, the United Kingdom, Pakistan, and the Philippines. The top five fraud terminating countries were Cuba, Somalia, Sierra Leone, Zimbabwe, and Latvia. 4 How big of a problem is VoIP fraud? VoIP fraud is a significant and growing problem in the telecommunications industry. Because fraudsters often attack during weekends, fraud events often go undetected for many hours. A single fraud event can easily cost a company between three and fifty thousand dollars. In many cases, this number can be even larger. A 2009 attack on an Australian company s VoIP PBX resulted in 11,000 international calls in just 46 hours, leaving the SIP provider with a bill in excess of $120, A 2011 weekend episode in South Africa resulted in a bill of over $12,000 and another in the US cost victims more than $1.4 million. 6 Experts have trouble estimating an aggregated global yearly loss, because calculations are often based on subjective and individual standards. However, most experts agree that total loss is somewhere between 3 and 10 percent of income. This translates to a total global losses of somewhere between 30 and 50 billion dollars per year. 7 The CFCA s 2011 report put the number at $40.1 billion dollars lost. This is a problem that is only increasing. According to the CFCA report, phone fraud is growing at a rate of 29% per year. As the popularity of VoIP continues to grow, the problem of VoIP fraud will become an increasing threat to the industry. 4 CFCA 5 Winterford 6 "VoIP Hacking on the Increase." 7 The Importance of Quantifying Fraud.
5 Types of Fraud In our exploration of VoIP fraud, we explain the numerous flavors of fraudulent activities. Fraudsters have come up with a myriad of techniques for exploiting the VoIP industry. Some are stolen from traditional phone fraud tactics, others from computer hacking techniques, and still others exploit VoIP specific equipment and software. These are just a few examples of the many types of VoIP fraud and fraudsters are constantly coming up with new ways to attack. In addition, most fraudsters will use some sort of combination of the techniques listed below. Arbitrage Arbitrage is simply the exploitation of the differences in settlement rates between countries, the complexity of services and rates, and the multi-operator environment of VoIP. For example, if country A has much lower settlement rates with country B than with country C, it might be cheaper for country C to send its traffic for country A via country B. One of the first larger arbitrage routes was for traffic between Australia and the US, which was cheaper if sent via New Zealand and Canada. Scenario 1: Without Arbitrage Scenario 2: With Arbitrage This is an example of a type of fraud that falls into a legal gray area. Though it may seem relatively tame, arbitrage can create problems for telecom companies. Unscrupulous providers may artificially inflate traffic where arbitrage is profitable. Telcos often withhold payments to Service Providers if this type of activity is suspected. Buffer Overflow Some VoIP fraud relies on methods typically used for computer fraud. In this case, fraudsters use buffer overflow errors in handling INVITE or SIP (Session Initiation Protocol) packets. The flaw might be used to crash applications or run arbitrary code. This is an issue that has was a particular problem for Asterisk users in the past, but has since been remedied.
6 Bypass Fraud Bypass fraud is the unauthorized insertion of traffic onto another carrier s network. You may also find this type of fraud referred to as Interconnect fraud, GSM Gateway fraud, or SIM Boxing. This scenario requires that the fraudsters have access to advanced technology, which is capable of making international calls appear to be cheaper, domestic calls, effectively bypassing the normal payment system for international calling. The fraudsters will typically sell long distance calling cards overseas. When customers call the number on the cards, operators are able to switch the call to make it seem like a domestic call. Scenario 1: Without Bypass Fraud Scenario 2: With Bypass Fraud
7 Call Transfer Fraud One type of fraud that has been a particular issue for softswitch users is call transfer fraud. In this scenario, the fraudster hacks into a PBX and uses that PBX s services to make free long distance calls. By instructing the compromised PBX to transfer the call to the hacker s own phone service, subscribers to the fraudster s phone service can speak to their international destinations through the hacked soft switch, and the soft switch operator cannot bill the hacker s subscriber. Those familiar with three way calling will recognize the inspiration for this type of fraud. See the chart below for a detailed explanation. 1. Hacker phone service hacks unsuspecting PBX to make a call to make international calls 2. PBX sends SIP INVITE to soft switch 3. Softswitch routes call to international carrier 4. Hacker instructs PBX to blind transfer call to Hacker Phone Service 5. PBX sends SIP REFER to soft switch to blind transfer call to Hacker Phone Service 6. Softswitch sends SIP INVITE to Hacker Phone Service 7. Hacker s Subscriber speaks to international destination through soft switch. Most soft switches has no way of tracking a call once it is transferred out of the network, so fraudsters can generate a significant amount of traffic and revenue for themselves before being caught. Domestic & International Revenue Share Fraud Revenue share fraudulent activities are those which abuse carrier interconnect agreements. Cooperation is the key to this type of fraud. The fraudster s goal is to pair up with a destination that can charge high rates, and then inflate traffic to his numbers at little or no cost to himself. These types of schemes can occur within a country, or across international borders. Though they may not be technically illegal, they are often also paired with PBX hacking or other forms of fraud that generate illegal and artificial traffic.
8 Fraud rings in the Philippines and other developing countries have been known to have human labor pools that perform password guessing and make manual calls originating from hacked PBXs. Sometimes the labor pool can even be generated by scams on social media, SPAM mail, or post cards that advertise free vacations or important information just by calling a phone number. Traffic Pumping or Switch Access Stimulation Because of telephone regulations, long distance carriers must pay access fees to local exchange carriers for calls to those carriers local subscribers. Rural carriers may charge substantially higher access fees than urban carriers. In order to increase their incoming call volume and revenue, some rural carriers partner with telephone service providers to route their calls through the rural carrier. These often include phone sex or free conference call providers, who expect a high volume of incoming calls. A similar scenario occurs internationally, with fraudsters making setting up conference servers in third world countries and making deals with the local (often state owned) telephone company. To qualify as access stimulation, a fraudster must: 1. Have a revenue share agreement between the terminating carrier that stimulates demand 2. Have a 3 to 1 increase in interstate terminating to originating traffic or 100% traffic growth in a month year over year. In this case, authorities can step in and force the terminating carrier to re-file their access tariff with the public utilities commission within 45 days. Because of the extra traffic, the terminating carrier would no longer be eligible for the high access fee, and will likely be dropped from the revenue sharing agreement. CNAM Revenue pumping or Dip pumping Every call to a U.S. telephone number that has Caller ID (CID) enabled requires that the terminating phone company perform a lookup in one of several national databases that contain all the U.S. subscriber names and numbers. This database lookup is called a CNAM dip. When this database is being dipped the originating local phone company gets compensated by the terminating phone company this is commonly referred to as a CNAM dip fee (or simply a dip fee). This compensation happens for every call where the calling party name is displayed to the called party even if the call is not answered. CNAM Revenue Pumping, or DIP Pumping is similar to regular traffic pumping. The fraudsters again, partner with the parties who typically receive CNAM revenue, and generate traffic to conference servers with those numbers, sharing the revenue created. This traffic is generated wither by high volume call services (such as free conference calls and phone sex services) or by hacking into vulnerable PBX systems. Premium Rate Services Premium-rate telephone numbers are telephone numbers for telephone calls during which certain services are provided, and for which prices higher than normal are charged. Unlike a
9 normal call, part of the call charge is paid to the service provider, thus enabling businesses to be funded via the calls. Like the other revenue sharing schemes, fraudsters will pair up with a premium rate service to generate traffic to the number, via legal or illegal methods. False Answer Supervision When a dialed phone number is not in service, the calling party will hear a brief recording telling them so. There is no answer supervision or connection between the calling and called party. Since the call never connects, it is an incomplete call and should not be billed. However, fraudsters use false answer supervision to make these calls appear as completed calls which may be billed. Perhaps the fraudster has published rates for terminating calls without any intention of actually completing the calls. Here, service providers will route calls through the fraudster, who, instead of terminating the call, will play a not in service message and then bill the service provider for more than 10 seconds of calling. This type of fraud hurts the originating service provider both by costing money, and by hurting their reputation. The key indicators of this type of fraud are: Short phone calls Calling party hangs up nearly 100% of the time High answer seizure ratio Location Routing Number (LRN) Fraud Location Routing Number Fraud or LRN fraud works based on the desire of some service providers to avoid extra charges from LRN dips. Most providers will run an LRN dip to determine the correct LRN for a dialed number. However, many service providers will not perform an LRN dip if the LRN is already in the SIP message. Fraudsters take advantage of this by inserting fake LRNs into their calls. For example, they may insert the LRN for a relatively cheap terminating destination, when the call is actually going to a high cost rural destination. The service provider will then bill the fraudster for the cheaper call, but will have to eat the cost of the expensive rural call. In some cases, this can be up to 5x the price they billed the fraudster.
10 PBX Hacking One of the most typical and certainly one of the most insidious flavors or VoIP fraud involves hacking into a Private Branch Exchange (PBX). Fraudsters who can exploit the vulnerabilities of the IP PBX are able to generate a significant amount of traffic. PBX hacking is the common technique used to perpetrate the Domestic and International Revenue Share Fraud and Call Transfer Fraud schemes listed above. PBXs can be compromised in-band (over the phone circuit) by someone guessing the numeric pin on an extension or by finding an extension with a default pin. There are four common configuration mistakes in VoIP security architecture that can increase the risk of PBX hacking: 8 1. Weak user authentication and access control 2. Relying solely on Session Border Controllers (SBCs) to provide security 3. Inadequate virtual LAN separation and control 4. Inadequate use of encryption Phreaking Phreaking is simply unauthorized access and control of a phone. Phreaked PBXs may be networked together to create a fraudulent telecom network for providing services. Customers of phreaked services often inclue call shops, call centers, calls sold through the internet, and traffic pumping schemes. Roaming Fraud Roaming fraud is the use of a wireless operator s services outside of the user s home country where there is no intention of paying for calls made. Typically, this type of fraud is committed by someone who is also using subscription fraud (obtaining a service subscription using a false identity). Because of the delay in the transference of call detail records between roaming partners, it can take days or even weeks for the home network to receive the call records and notice the fraud. SIPVicious Though its name suggests otherwise, the SIPVicious program is a mainstream auditing too for VoIP systems. Unfortunately, fraudsters have also found a way to use it for attacks. The attacks are apparently aimed at taking control of VoIP servers to place unauthorized calls. The attacks use a known Trojan, jqs.exe, and connect to command and control servers to receive instructions on downloading instructions as well as the SIPVicious tool from a.cc domain. After installation, SIPVicious is run and scans for SIP devices on the compromised computer's network and launches brute force attacks to guess the administrative password on those systems. This creates a base from which attackers can make VoIP calls from the victim's phone or VoIP infrastructure. Those calls might be used to rack up charges on premium rate numbers controlled by the attackers, or as part of voice phishing (vishing) scams that target unwitting consumers. SIP Vicious can be found online at 8 Boone
11 Shell Companies Recent VoIP scams have involved the creation of shell companies. These companies have no operations, and their sole purpose is to induce companies that sell VoIP services to extend service on credit to the shell companies. When the victim providers sell VoIP services to the shell companies on credit, the conspirators bust out the accounts by causing the companies to use substantially more VoIP services than the companies had been approved to buy in such a short period of time. Fraudsters typically do this over weekends and holidays so that the providers do not notice. When the invoices for the services came due, the fraudsters send fake wire transfer confirmations via or submit small payments to keep the victim providers from cutting off service. Subscription Fraud Subscription fraud is simple the use of service with no intent to pay. Often this type of fraud is associated with other crimes, such as identity theft. The true impact of subscription fraud often goes unrecognized because providers mistake it for bad debt. The key difference between the two is intention. Fraudsters gain access to a service in one of three ways: 1. Giving valid details, but disappearing without paying the bill 2. Using false details 3. Using the identity of another person (identity theft) Once recognized as a bona fide customer, fraudsters then have access to a network and are able to carry out revenue generating schemes that can seriously damage reputation and bottom-line profits. Toll Fraud Toll fraud is a scheme where fraudsters break into a company s VoIP network and sell long distance minutes. Fraudsters hack companies PBXs, and then control the hacked PBXs to make long distance calls. To make money, the fraudsters will sell long distance calls, and then use the hacked PBXs to complete the calls. Unallocated Number Fraud Some fraudsters simply add unallocated phone numbers to their rate deck. They can then simulate traffic to this number, which will generally be routed to the fraudulent company, as they are the only ones that will terminate the call, based on the rate decks. According to recent estimates, 32% of called numbers used for fraud are unallocated numbers.
12 Techniques for Fighting VoIP Fraud The most prevalent threats to VoIP deployments today are rooted in hacking of the underlying and supporting infrastructure. The major IP PBX vendors can be secured, but security has to be considered during deployments. It s important to consider your existing network security before adding VoIP components. A VoIP security assessment and penetration test will help identify vulnerabilities. Analyzing Call Detail Records The simplest way of tacking VoIP fraud is by analyzing Call Detail Records (CDRs). VoIP providers should put into place a system that detects the most common symptoms of fraud and PBX hacking, traffic spikes, unusual call patterns, etc. These systems work best when they are reported in near real time. In addition, there must be a system for monitoring this analysis, especially overnight, on weekends, and over holidays. The best analysis solutions will include alerts or will be integrated with your routing system to temporarily block suspicious calls. Call Blocking Some providers are taking an even more aggressive stance against fraud and completely blocking destination countries with reportedly high incidences of fraud, or simply blocking calls to fraud related phone numbers. Obviously, this method risks denying legitimate traffic, and can also become a time consuming project, keeping up with the latest news on countries and numbers that have been reported. Call Routing Other service providers have chosen to route fraud countries only through operators who perform a validation on the call before completing it. Though this method may cut down on fraud, it is also time consuming and not cost effective. Legal Action Though it is tempting to rely on legal action as a solution to VoIP fraud, it is not the ideal option. Recent studies have shown that companies choose not to report fraud cases to law enforcement due to a perceived lack of interest and understand from authorities. Though 89.1% of communications companies refer at least one case to law enforcement per year, few fraudsters are ultimately caught and punished. 9 That being said, there have been recent arrests over VoIP fraud. In May 2012, two men who stole more than $4.4 million from VoIP providers were sentenced to three years in prison and will be required to pay back the millions of dollars. 10 In another recent case in Australia, fraudsters were sentenced to 40 years in federal prison and owe $18 million in restitution Global Fraud Loss Survey 10 U.S. Attorney s Office. District of New Jersey 11 Wilonsky
13 Session Border Controllers Session Border Controllers, which work in front of an IP connected PBX can be a deterrent to fraud. The SBC can detect and stop attempts to guess user credentials or unauthorized attempts to route traffic. Some SBCs can analyze call patters and dynamically learn your normal traffic patterns, sending warnings when something deviates from the norm. Session Border Controller cannot, however, detect Traffic Pumping attacks.
14 TransNexus VoIP Fraud Detection Solutions TransNexus has developed a number of solutions to detect fraud in VoIP networks. NexOSS, in addition to its already industry-leading least cost routing features, effectively eliminates the problem of traffic pumping fraud for VoIP providers. The solution is to include smart monitoring features that sense when there is an unusual spike in call traffic to a specific destination. When a suspicious spike occurs, the NexOSS system simply and automatically puts a temporary block on the route, ensuring that fraud losses are kept to an absolute minimum without interrupting legitimate calls. TransNexus solutions analyze CDRs or RADIUS records, and can identify fraud by IP address, or by group or user id. TransNexus has partnered with top industry leaders like Acme Packet, MetaSwitch, and Broadsoft to ensure that the solutions operate smoothly with any network. Summary VoIP fraud is, and will remain, a lucrative criminal business. As VoIP continues to grow in popularity, schemes for beating the system will continue to become more complex and powerful. VoIP providers and enterprises must work together to ensure their networks are secure from every angle. By securing networks and analyzing traffic for signs of fraud, VoIP providers can minimize their fraud risks.
15 About TransNexus TransNexus is a software development company specializing in applications for managing wholesale VoIP networks. TransNexus provides its Operations and Billing Support System (OSS/BSS) software platform to major VoIP carriers worldwide. Important carrier features offered by TransNexus are least cost routing, number portability, fraud detection, profitability analysis and QoS controls. TransNexus is an active contributor to open source software projects and only offers software products based on open standards. While TransNexus maintains interoperability partnerships with strategic vendors such as Acme Packet, BroadSoft, Cisco and Metaswitch, the TransNexus solution is interoperable with any SIP based VoIP system. TransNexus is located in Atlanta, Georgia and is a privately held Delaware C corporation. For more information, online demonstrations, and free downloads, please visit
16 Works Cited 2011 Global Fraud Loss Survey. Rep. CFCA, 4 Oct Web. 10 Sept <http://www.cfca.org/pdf/survey/cfcaglobalfraudlosssurvey2011.pdf>. AT&T Agrees to Drop $1.15M Suit against Phone Hacking Victim. CFCA, 10 July Web. 10 Sept <http://www.cfca.org/fraudalert.php?id=5232>. Boone, Adam. "Toll Fraud Is Alive and Well." Computerworld. N.p., 2 Oct Web. 10 Sept <http://www.computerworld.com/s/article/ /toll_fraud_is_alive_and_well>. CFCA. Communication Fraud Control Association (CFCA) Announces Results of Worldwide Telecom Fraud Survey. CFCA. CFCA, 4 Oct Web. 10 Sept <http://www.cfca.org/pdf/survey/cfca2011globalfraudlosssurvey-pressrelease.pdf>. The Importance of Quantifying Fraud. Tech. Basset Telecom, n.d. Web. 10 Sept <http://www.bassetglobal.com/_resources/11/dokument/basset%20telecom%20report%235_the%20i mportance%20of%20quantifying%20fraud.pdf>. The State of Phone Fraud: 1H Rep. Pindrop Security, 2 Aug Web. 10 Sept <http://www.cfca.org/pdf/whitepapers/wp_pindrop_phonefraudreport.pdf>. U.S. Attorney s Office. District of New Jersey. Two Fraudulent Telephone Service Wholesalers Sentenced to Prison for $4.4 Million VoIP Fraud Scheme. FBI. N.p., 15 May Web. 10 Sept <http://www.fbi.gov/newark/press-releases/2012/two-fraudulent-telephone-service-wholesalerssentenced-to-prison-for-4.4-million-voip-fraud-scheme>. "VoIP Hacking on the Increase." My Broadband. N.p., 9 May Web. 10 Sept <http://mybroadband.co.za/news/telecoms/20140-voip-hacking-on-the-increase.html>. Wilonsky, Robert. "Three Ringleaders of Local cybercrime Conspiracy given Long Prison Sentences, Forced to Pay Back Many Millions." Web log post. Crime Blog. Dallas News, 25 May Web. 10 Sept <http://crimeblog.dallasnews.com/2012/05/three-ringleaders-of-local-cybercrime-conspiracygiven-long-prison-sentences-forced-to-pay-back-many-millions.html>. Winterford, Brett. "Perth Firms Phreaked by VoIP Hackers." ITnews. N.p., 12 Apr Web. 10 Sept <http://www.itnews.com.au/news/254255,perth-firms-phreaked-by-voip-hackers.aspx>.
VOIP SECURITY: BEST PRACTICES TO SAFEGUARD YOUR NETWORK ====== Table of Contents Introduction to VoIP Security... 2 Meet Our Expert - Momentum Telecom... 2 BroadWorks... 2 VoIP Vulnerabilities... 3 Call
page 1 of 7 International Dialing and Roaming: Preventing Fraud and Revenue Leakage Abstract By enhancing global dialing code information management, mobile and fixed operators can reduce unforeseen fraud-related
VOIP THEFT OF SERVICE: PROTECTING YOUR NETWORK ====== Table of Contents Introduction to VoIP Theft of Service... 2 Meet Our Expert Phone Power... 2 The Anatomy of International Revenue Sharing Fraud...
Concept Note powering the ROC PBX Hacking Introduction A PABX/PBX (Private (Automatic) Branch exchange) is telephone equipment that is installed on corporate premises to provide a number of telephone extensions
Czech Technical University in Prague Faculty of Electrical Engineering Master s Thesis 2015 Nikulin Nikita 1 2 Czech Technical University in Prague Faculty of Electrical Engineering Department of Telecommunications
Security and Risk Analysis of VoIP Networks S.Feroz and P.S.Dowland Network Research Group, University of Plymouth, United Kingdom e-mail: email@example.com Abstract This paper address all
PBX Fraud Educational Information for PBX Customers Telephone Hackers Hit Where It Hurts: Your Wallet Telephone hacking is unauthorized or fraudulent activities that can affect your telephone system, and
Communications Fraud Control Association 2013 Global Fraud Loss Survey Overview Survey Type & Methodology Executive Summary Results Fraud Management Snapshot Top Fraud Methods & Types Top Countries Where
THE TOP SECURITY QUESTIONS YOU SHOULD ASK A CLOUD COMMUNICATIONS PROVIDER How to ensure a cloud-based phone system is secure. BEFORE SELECTING A CLOUD PHONE SYSTEM, YOU SHOULD CONSIDER: DATA PROTECTION.
How the ETM (Enterprise Telephony Management) System Relates to Session Border Controllers (SBCs) A Corporate Whitepaper by SecureLogix Corporation Introduction Enterprises are continuing to convert and
A SECURITY GUIDE TO PROTECTING IP PHONE SYSTEMS AGAINST ATTACK With organizations rushing to adopt Voice over IP (VoIP) technology to cut costs and integrate applications designed to serve customers better,
White Paper Voice Fraud Monitoring Executive Summary Voice Fraud is a growing concern in this country, with 98% of businesses which have experienced hacking also victims of Voice Fraud. The cost of the
Know your enemy Sun Tzu's The Art of War The #1 Issue on VoIP, Fraud! How to identify, prevent and reduce damages caused by fraud Flavio E. Goncalves About me Author of the book Building Telephony Systems
PBX Fraud Information Increasingly, hackers are gaining access to corporate phone and/or voice mail systems. These individuals place long distance and international calls through major telecom networks
APPLICATION NOTE Securing SIP Trunks SIP Trunks are offered by Internet Telephony Service Providers (ITSPs) to connect an enterprise s IP PBX to the traditional Public Switched Telephone Network (PSTN)
Business Phone Security Threats to VoIP and What to do about Them VoIP and Security: What You Need to Know to Keep Your Business Communications Safe Like other Internet-based applications, VoIP services
White Paper Session Initiation Protocol Trunking - enabling new collaboration and helping keep the network safe with an Enterprise Session Border Controller Table of Contents Executive Summary...1 Starting
VoIP in the Enterprise Date: March. 2005 Author: Sonia Hanson Version: 1.1 1 1 Background Voice over IP In the late 1990s Voice over IP (VoIP) was seen as a disruptive new technology that had the potential
FACILITY TELECOMMUNICATIONS MANAGEMENT FOR THE GOVERNMENT EMERGENCY TELECOMMUNICATIONS SERVICE Introduction This document provides telecommunications management information for organizations that use the
Business Email Compromise Scam The FBI has issued a warning about a significant spike in victims and dollar losses stemming from an increasingly common scam in which crooks spoof communications from executives
Contents 1 Introduction... 2 2 PBX... 3 3 IP PBX... 4 3.1 How It Works... 4 3.2 Functions of IP PBX... 5 3.3 Benefits of IP PBX... 5 4 Evolution of IP PBX... 6 4.1 Fuelling Factors... 6 4.1.1 Demands from
VOIP Security Essentials Jeff Waldron Traditional PSTN PSTN (Public Switched Telephone Network) has been maintained as a closed network, where access is limited to carriers and service providers. Entry
CHAPTER3 Advantages of Broadband Phone Services Why are so many people subscribing to broadband phone services, either as an additional phone line or as a complete replacement to their traditional phone
Written Testimony of John L. Barnes Director of Product Development Verizon Business Hearing on VoIP: Who Has Jurisdiction to Tax It? House Committee on the Judiciary Subcommittee on Commercial and Administrative
2015 Global Fraud Loss Survey Respondents 2 In which region are you located? 30.0% 29.8% 25.0% 20.0% 19.3% 15.0% 14.0% 10.0% 7.0% 8.8% 5.3% 8.8% 7.0% 5.0% 0.0% Asia South Pacific Central and South America
A Brief Overview of VoIP Security By John McCarron Voice of Internet Protocol is the next generation telecommunications method. It allows to phone calls to be route over a data network thus saving money
VOIP THE ULTIMATE GUIDE VERSION 1.0 9/23/2014 onevoiceinc.com WHAT S IN THIS GUIDE? WHAT IS VOIP REQUIREMENTS OF A VOIP SYSTEM IMPLEMENTING A VOIP SYSTEM METHODS OF VOIP BENEFITS OF VOIP PROBLEMS OF VOIP
VoIP Solutions Guide Everything You Need to Know Simplify, Save, Scale VoIP: The Next Generation Phone Service Ready to Adopt VoIP? 10 Things You Need to Know 1. What are my phone system options? Simplify,
Fighting Future Fraud A Strategy for Using Big Data, Machine Learning, and Data Lakes to Fight Mobile Communications Fraud Authored by: Dr. Ian Howells Dr. Volkmar Scharf-Katz Padraig Stapleton 1 TABLE
Achieving Truly Secure Cloud Communications How to navigate evolving security threats Security is quickly becoming the primary concern of many businesses, and protecting VoIP vulnerabilities is critical.
ITSPA Recommendations for secure deployment of an IP-PBX Public Node4 Limited Richard Buxton 31/05/2011 Recommendations for secure deployment of an IP-PBX Node4 are members of the Internet Telephony Service
Whitepaper SBC Sticker Shock Table of Contents I. Introduction... 3 II. Why an SBC?... 3 III. Avoiding Unexpected SBC Costs... 4 IV. Endpoints... 5 V. SIP Licenses... 5 VI. Conclusion... 6 DECEMBER 2014
nexvortex SIP Trunking Implementation & Planning Guide V1.5 510 S PRING S TREET H ERNDON VA 20170 +1 855.639.8888 Introduction Welcome to nexvortex! This document is intended for nexvortex Customers and
Fraud FAQs Telephone and Internet fraud happens every day. It rings up billions in fraudulent phone charges and victimizes millions of people a year. It can happen in public, in your home, at your business
TOLL FRAUD POLICIES AND PREVENTION What is Toll Fraud? Toll Fraud is the theft of long-distance service. It s the unauthorized use of phone lines, services or equipment to make long distance calls. When
S-Series SBC Interconnect Solutions A GENBAND Application Note May 2009 Business Requirements A ubiquitous global voice service offering is the challenge among today s large service providers. The need
Firewalls vs. ESBCs: You May Be Under Attack and Not Even Know It Mike Reiman Director of Software Solutions Edgewater Networks Overview Based in San Jose, California, Edgewater Networks was founded in
What is SIP? What s a Control Channel? History of Signaling Channels Signaling and VoIP Complexity Basic SIP Architecture Simple SIP Calling Alice Calls Bob Firewalls and NATs SIP URIs Multiple Proxies
Security & Reliability in VoIP Solution July 19 th, 2006 Ram Ayyakad firstname.lastname@example.org About My background Founder, Ranch Networks 20 years experience in the telecom industry Part of of architecture
Award-winning VoIP business solutions Breaking Communications Barriers 13 years of innovations in VoIP Dialexia Communications is an award-winning telecom software & services company established in 2001
2010 White Paper Series Top Ten Security Issues Voice over IP (VoIP) Top Ten Security Issues with Voice over IP (VoIP) Voice over IP (VoIP), the use of the packet switched internet for telephony, has grown
NEWT Managed PBX A Secure VoIP Architecture Providing Carrier Grade Service This document describes the benefits of the NEWT Digital PBX solution with respect to features, hardware partners, architecture,
Whitepaper Are Firewalls Enough for End-to-End VoIP Security Table of Contents I. Introduction... 3 II. Definitions... 3 III. Security... 4 IV. Interoperability... 5 V. Availability... 5 VI. A single demarcation
Safeguarding Networks Against Fraud Connections 2014 Safeguarding Networks Against Fraud Agenda Toll Fraud and VoIP Hacking Elliot Zeltzer, VP IP Engineering, BullsEye Telecom BroadSoft Tools & Tips for
TOLL FRAUD HIGHLIGHTING THE NEED TO SECURE ENTERPRISES COMMUNICATION SYSTEMS APPLICATION NOTE TABLE OF CONTENTS Customer Scenarios / 1 What Happened? / 1 Why is telecoms fraud expanding? / 2 How do Fraudsters
Top tips for improved network security Network security is beleaguered by malware, spam and security breaches. Some criminal, some malicious, some just annoying but all impeding the smooth running of a
MIS5206 Week 12 Your Name Date 1. Which significant risk is introduced by running the file transfer protocol (FTP) service on a server in a demilitarized zone (DMZ)? a) User from within could send a file
Voice Over Internet Protocol (VoIP) Issues and Challenges William McCrum Phone: +1 613-990-4493 Fax: Email: +1 613-957-8845 email@example.com Content Network Evolution and drivers VoIP Realizations
An Oracle White Paper December 2013 The Value of Diameter Signaling in Security and Interworking Between 3G and LTE Networks Introduction Today s mobile networks are no longer limited to voice calls. With
Deploying Firewalls Throughout Your Organization Avoiding break-ins requires firewall filtering at multiple external and internal network perimeters. Firewalls have long provided the first line of defense
HOW WE DELIVER A SECURE & ROBUST HOSTED TELEPHONY SOLUTION 01 INTRODUCTION Inclarity is the UK s leading provider of Hosted Telephony, Hosted UC and Hosted Video solutions. We help our customers to communicate
Anti Fraud Services Associate Member of.. Fraud Context: Global Risk Fraud losses as a percentage of global telecom revenues were estimated at 2.09% in 2013 by the Communications Fraud Control Association
E-Banking Regulatory Update Hal R. Paretchan, CISA, CISSP, CFE Information Technology Specialist Federal Reserve Bank of Boston Supervision, Regulation & Credit (617) 973-5971 firstname.lastname@example.org
Cloud and Infrastructure A guide to selecting the right service provider www.gamma.co.uk With the adoption of IP voice expected to be the norm by 2017*, the global market has seen a myriad of hosted unified
Convergence: The Foundation for Unified Communications Authored by: Anthony Cimorelli, Senior Product Marketing Manager Onofrio Norm Schillaci, Principal Sales Engineer Michelle Soltesz, Director, Marketing
Threat Mitigation for VoIP Bogdan Materna, VP Engineering and CTO VoIPshield Systems Third Annual VoIP Security Workshop June 2, 2006 Overview Basics VoIP Security Impact Examples of real vulnerabilities
Fraud Advice for Businesses What is Fraud? Fraud is a crime in which some kind of deception is used for personal gain. Fraud is sometimes also referred to by other names such as a scam or con. Businesses
Fraud Investigation and Education FIS www.fisglobal.com Phishing What is it? Phishing is a technique used to gain personal information for purposes of identity theft, using fraudulent e mail messages that
MANUAL HOW AND TO WHOM SELL VOIP Version 1.0 What is VoIP? Voice over Internet Protocol (VoIP) is a protocol optimized for the transmission of voice through the Internet or other packet switched networks.
Statistical Analysis of Internet Security Threats Daniel G. James ABSTRACT The purpose of this paper is to analyze the statistics surrounding the most common security threats faced by Internet users. There
Best Practices for Securing IP Telephony Irwin Lazar, CISSP Senior Analyst Burton Group Agenda VoIP overview VoIP risks Mitigation strategies Recommendations VoIP Overview Hosted by VoIP Functional Diagram
86-10-15 The Self-Hack Audit Stephen James Payoff As organizations continue to link their internal networks to the Internet, system managers and administrators are becoming increasingly aware of the need
White paper Phishing, Vishing and Smishing: Old Threats Present New Risks How much do you really know about phishing, vishing and smishing? Phishing, vishing, and smishing are not new threats. They have
Voice over IP (VoIP) has emerged as the new leader in cost-effective standards based communications. 360 Cloud VoIP enables customers have the benefits of an Enterprise PBX for a fraction of the cost of
VoIP Virtual Private Networks: Bringing the Benefits of Convergence to the Enterprise By Robert VanSickle Vice President Sales, Americas Region & Worldwide Sales Strategy VocalTec Communications www.vocaltec.com
Securing Unified Communications for Healthcare Table of Contents Securing UC A Unique Process... 2 Fundamental Components of a Healthcare UC Security Architecture... 3 Making Unified Communications Secure
Proactive Credential Monitoring as a Method of Fraud Prevention and Risk Mitigation By Marc Ostryniec, vice president, CSID The increase in volume, severity, publicity and fallout of recent data breaches
location of optional horizontal pic Corporate and Investment Banking Business Online Information Security Business Online Information Security Risk reduction: Ensuring your sensitive information is secure
What is identity theft? You might hear stories on the news about stolen identities, but what is identity theft? When someone uses the personal information that identifies you, like your name, credit card
PROTECTING YOUR CALL CENTERS AGAINST PHONE FRAUD & SOCIAL ENGINEERING A WHITEPAPER BY PINDROP SECURITY TABLE OF CONTENTS Executive Summary... 3 The Evolution of Bank Theft... Phone Channel Vulnerabilities
ACD: Average Call Duration is the average duration of the calls routed bya a VoIP provider. It is a quality parameter given by the VoIP providers. API: An application programming interface (API) is a source
Practical guide for secure Christmas shopping Navid 1 CONTENTS 1. Introduction 3 2. Internet risks: Threats to secure transactions 3 3. What criteria should a secure e-commerce page meet?...4 4. What security
An Allstream White Paper Business Continuity protection for SIP trunking service An Allstream White Paper 1 Table of contents The value of SIP trunking 1 The issue of business continuity 1 SIP trunking
Appendix A to 11-02-P1-NJOIT NJ OFFICE OF INFORMATION TECHNOLOGY P.O. Box 212 www.nj.gov/it/ps/ 300 Riverview Plaza Trenton, NJ 08625-0212 NEW JERSEY STATE POLICE EXAMPLES OF CRIMINAL INTENT The Intent
FDIC Division of Supervision and Consumer Protection Voice over Internet Protocol (VoIP) Informational Supplement June 2005 1 Summary In an attempt to control expenses, consumers and businesses are considering
A Light Reading Webinar Session Border Controllers in Enterprise Thursday, October 7, 2010 Hosted by Jim Hodges Senior Analyst Heavy Reading Sponsored by: Speakers Natasha Tamaskar VP Product Marketing
Glossary of Telco Terms Access Generally refers to the connection between your business and the public phone network, or between your business and another dedicated location. A large portion of your business
DOS ATTACKS IN INTRUSION DETECTION AND INHIBITION TECHNOLOGY FOR WIRELESS COMPUTER NETWORK ABSTRACT Dr. Sanjeev Dhull Associate Professor, RPIIT Karnal, Dept of Computer Science The DoS attack is the most
VOIP Buyer s Guide 10 questions to ask Essential information about your Voice over IP options VoIP is the Future. There s a lot of buzz about Voice over IP these days. People are talking about how it can
Leveraging Standards for Low Investment, High Returns Out of the box clearinghouse billing system uses OSP to capture new VoIP traffic, provide low cost termination, and generate new revenue streams. The
ATTACHMENT A AFFIDAVIT I, Kenneth Carl Heitkamp, being duly sworn, depose and state as follows: A. Introduction 1. I am a Special Agent of the Federal Bureau of Investigation (FBI) and have been so employed
Frequently Asked Questions about Integrated Access Phone Service How are local, long distance, and international calls defined? Local access transport areas (LATAs) are geographical boundaries set by the
: Ensuring End-to-End Service Quality and Performance in a Multi-Vendor Environment A Executive Summary Creating Business-Class VoIP Traditional voice services have always been reliable, available, and
Application Security in the Software Development Lifecycle Issues, Challenges and Solutions www.quotium.com 1/15 Table of Contents EXECUTIVE SUMMARY... 3 INTRODUCTION... 4 IMPACT OF SECURITY BREACHES TO