Protect your network against VoIP theft of service

As with any communication that takes place over the internet, Voice over Internet Protocol (VoIP) calls have a raft of security risks. One of these is theft of service. Read on to learn more about this type of VoIP-related fraud, and how you can protect your organization against it.

What is theft of service?

VoIP theft of service is the most common type of VoIP fraud. At its most basic level, it involves the theft of your organization’s VoIP account credentials, including usernames and passwords, either by eavesdropping or by introducing malware into your system. Once cybercriminals gain access to your account, they can freely make phone calls or change your call plans, running up your VoIP bill.

In addition, cybercriminals may use the stolen data to carry out other fraudulent activities. They can also use theft of service to flood your VoIP network with promotional calls similar to junk email via an attack called spam over internet telephony, or SPIT. Once they infiltrate your communications network, they might broadcast unsolicited messages or advertisements over your VoIP system. This keeps users from making or receiving calls, which can have a significant impact on your business’s operations.

How can you avoid theft of service?

Preventing VoIP theft of service simply requires using a little common sense and implementing some technical preventive measures.

  1. Make your passwords as secure as possible. Passwords must be 8–12 characters long, consisting of a combination of upper- and lowercase letters, numbers, and symbols. For added security, use passphrases, which are sentence-like strings of words. They’re usually longer than passwords, easier to remember, and more difficult to crack.
  2. Install firmware patches for your VoIP phones and infrastructure regularly, and keep your antivirus software up to date.
  3. Use fraudulent call routing detection and encryption software.
  4. Set up an enterprise-grade virtual private network (VPN) for employees working from home. A VPN encrypts incoming and outgoing traffic without compromising call quality.
  5. Review your organization’s call logs for any unusual trends or behavior, such as higher-than-usual call volumes or calls made during off-hours.

VoIP is an essential business communication tool, so it makes sense to understand what theft of service is to avoid its impacts on your company’s operations. For more information and useful tips on how to keep your VoIP system secure, drop us a line today.

Published with permission from TechAdvisory.org. Source.


Email is the primary avenue of attack for most cybercriminals, who use it to target individuals and businesses with phishing scams, ransomware attacks, and other cyberthreats. Learn how email security maintains the integrity of your emails, accounts, and data.GET A FREE COPY NOW!
+