Why you should update your SBC

Did you know that your VoIP systems are especially vulnerable to cyber attacks? When it comes to VoIP, hackers will go to great lengths to intercept messages over a network or even use denial-of-service attacks to shut yours down. To protect your network, firewalls and antivirus software may be your first options, but they simply can’t defend against modern voice attacks. What you need is an updated session border controller (SBC).

What is it?
In a nutshell, an SBC is a dedicated hardware device or software application that acts as a gatekeeper of your VoIP network, controlling how phone calls are initiated, conducted, and terminated. Much like a firewall, an SBC examines voice messages transmitted as IP packets and prevents unauthorized sessions to the network. This protects your business from call jacking, eavesdropping, and denial-of-service attempts.

But even though most businesses deploy SBC, many tend to leave it unmanaged, rendering it ineffective against new and emerging VoIP-based attacks. To make sure this doesn’t happen in your business, consider the following security best-practices with SBC:

Update frequently
Security threats are ever-evolving, and your security systems need to do the same. Set aside one hour per week to check for security updates and distribute them company-wide. To avoid disrupting daily operations and consuming large amounts of bandwidth, we recommend performing updates during off-hours.

Enable real-time alerts
Whether via email or text, your SBC product should alert you when something happens, when it has blocked a call, and why. These alerts will let you know about any attempted attacks and will notify you when your SBC is due for an update.

Assess SBC performance
To find out whether your SBC is routinely blocking threats, make sure to periodically evaluate its effectiveness. If a third-party is managing your VoIP systems, have them perform a security test to identify possible vulnerabilities within your system.

After the security assessment, your provider should compile a report about SBC performance and recommended solutions and updates you should install to mitigate security risks. This allows you to close up any security holes well before a malicious hacker exploits them.

Educate staff
Understanding why you need to update your SBC is a good first step in defending against a variety of VoIP-based attacks, but that’s no silver bullet. Aside from technical attacks, businesses need to train staff to spot cunning threats like vishing, a social engineering scam whereby hackers attempt to obtain sensitive information via phone calls.

Installing an SBC is important, but it can give businesses a false sense of security. As we mentioned, the cyber security landscape is ever-changing. So if you’re not taking a proactive role in updating and assessing your SBC, then your business might suffer for it in the near future.

To avoid spending a lifetime recovering from successful voice attacks, contact us today. We take the time to ensure your SBC is up-to-date and your business is safe.

Published with permission from TechAdvisory.org. Source.


Email is the primary avenue of attack for most cybercriminals, who use it to target individuals and businesses with phishing scams, ransomware attacks, and other cyberthreats. Learn how email security maintains the integrity of your emails, accounts, and data.GET A FREE COPY NOW!
+