FierceWirelessFierceWirelessEuropeFierceDeveloperFierceMobileContentFierceBroadbandWirelessFierceVoIPFierceIPTVFierceTelecomFierceOnlineVideoFierceCable

Free Newsletter

About | View Sample | Privacy

UCSniff targets VoIP, UC, and the inside job

September 28, 2008 — 10:16pm ET | By Doug Mohney
Tools

Over the weekend, the Toorcon security conference in San Diego showcased a next-generation VoIP sniffer. Trust no one, and that goes double if they are on your side of the firewall.

The UCSniff tool, created by VoIP Hopper author and director of Sipera's VIPER VoIP vulnerabilities lab Jason Ostrom, has two settings for mischief. One is a learning mode that sniffs IP traffic and maps phone extensions to specific IP addresses. By default, it captures all the calls and saves them to .WAV files, says CNET news. 

Once you have a map of phones to IP addresses, an attacker could use UCSniff to listen to all the VoIP conversations made by a specific mode.  If that's not exciting enough, a second model allows for monitoring calls made exclusively between two extensions.

Readers should note that Ostrom's presentation outlines scenarios for the "trusted insider" within the corporation that has access to an organization's VoIP infrastructure and calls for consideration of internal controls and best practices to prevent VoIP eavesdropping.

For more:
- CNet blogs about Toorcon VoIP security session. Posting.

Related articles
VoIP Security and the Circle of Trust
Last Hope Launches Security Season


SHARE
WITH:
Email Twitter Facebook LinkedIn StumbleUpon
Get Your FREE FierceVoIP Email Newsletter:

Be the first to comment
More stories about VoIP Technology   VoIP Security   VoIP   Sipera   Vulnerabilities   toorcon   VIPER lab   Best Practices   Security Conference  

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.