This is voipsecurityblog's Typepad Profile.
Join Typepad and start following voipsecurityblog's activity
Join Now!
Already a member? Sign In
voipsecurityblog
I am a 50 year old, married, guy with four daughters, computer security professional.
Interests: my family, poker, exercise, hacking UC/VoIP
Recent Activity
Here is a link to the webinar I did this week, along with Cisco, on Telephony Denial of Service. You do have to register, but that is a small price to pay :) http://tools.cisco.com/gems/cust/customerSite.do?METHOD=E&LANGUAGE_ID=E&SEMINAR_CODE=S21445&PRIORITY_CODE=000566573 Continue reading
Posted Oct 31, 2014 at Mark Collier's VoIP/UC Security Blog
Here is a link to a good article in a national publication, the New York Times, on the growing issue of toll fraud. Toll fraud has been around for many years, but continues to get worse for a number of... Continue reading
Posted Oct 22, 2014 at Mark Collier's VoIP/UC Security Blog
Here is a link on Youtube of a recent video we did on Telephony Denial of Service (TDoS). It covers the concept and then the various types of attacks that we are seeing, including manual TDoS, social networking TDoS, and... Continue reading
Posted Oct 14, 2014 at Mark Collier's VoIP/UC Security Blog
I will be participating with Cisco in a webinar on Telephony Denial of Service (TDoS) October the 28th at 10:00 AM CST. You can check it out and register at the following link: https://communities.cisco.com/message/166030#166030 Continue reading
Posted Oct 14, 2014 at Mark Collier's VoIP/UC Security Blog
Image
The Federal Trade Commission (FTC) is continuing their fight against those annoying robocalls, by sponsoring their Zapping Rachel challenge at the most recent DEFCON 22 conference. The focus of the challenge was phone honey pots (phonypots), which are used to... Continue reading
Posted Sep 15, 2014 at Mark Collier's VoIP/UC Security Blog
See the video in the link below. This is another case of robocalls, specifically automated debt collection calls, gaining significant national attention: http://abcnews.go.com/Nightline/video/robocalls-cell-phone-money-24768246 We all know that these calls are a big issue for consumers on their land lines. The... Continue reading
Posted Jul 31, 2014 at Mark Collier's VoIP/UC Security Blog
The FBI just released another private industry notification to warn enterprises about contined Telephony Denial of Service (TDoS) attacks. The FBI warns that the attacks tend to target hospitals and Public Safety Access Points (PSAPs), the administrative part of a... Continue reading
Posted Jul 12, 2014 at Mark Collier's VoIP/UC Security Blog
Back in 2011, a firm was hit with toll fraud and racked up a $35,000 bill. The firm refused to pay and fought the issue in court. The court found in favor of the firm and ruled that the service... Continue reading
Posted Jul 9, 2014 at Mark Collier's VoIP/UC Security Blog
Jon Arnold made several blog posts on toolbox.com on VoIP security. Here is a link to the latest one, discussing toll fraud: http://it.toolbox.com/blogs/voip-news/two-more-things-to-know-about-toll-fraud-61803 There are several other articles - check them out. Continue reading
Posted Jun 27, 2014 at Mark Collier's VoIP/UC Security Blog
For those not familiar with STIR, it is an effort (working group) attempting to solve the issue of spoofed calling number (caller ID). It has become so easy to generate calls with random anonymous numbers or specific/targeted spoofed numbers, that... Continue reading
Posted Jun 12, 2014 at Mark Collier's VoIP/UC Security Blog
Here is an interesting article about the relevance and techniques for wardialing in 2014. http://www.freehowtohackwifi.com/general-wifi-hacking/war-dialing/ Wardialing and modems are still a reality despite the wide adoption of VoIP. Also, the available of VoIP at the war dialing tool side, has... Continue reading
Posted Jun 5, 2014 at Mark Collier's VoIP/UC Security Blog
Here is a link to a good video on VoIP and SIP security. http://www.securitytube.net/video/10151 Patrick McNeil covers how to hack SIP servers, at service providers and enterprises, to make money. The presentation is useful because it covers why someone might... Continue reading
Posted Jun 5, 2014 at Mark Collier's VoIP/UC Security Blog
Image
We just completed another video on VoIP and UC security. This one covers our recently released Communications Security - State of Voice Security Report. Check it out at: http://www.securelogix.com/sos/ You can also see it on YouTube: http://youtu.be/zi4T65FTPkQ Continue reading
Posted Apr 19, 2014 at Mark Collier's VoIP/UC Security Blog
Here is an article in Tech Target from Katherine Finnel, who interviewed me at Enterprise Connect, on TDoS, financial fraud, and other issues. Check it out: http://searchunifiedcommunications.techtarget.com/news/2240217298/SecureLogix-CTO-The-UC-network-security-issues-enterprises-face Continue reading
Posted Apr 3, 2014 at Mark Collier's VoIP/UC Security Blog
Image
Check out the following article. It states that over 200,000 voice phishing/vishing calls into Korea, from other countries, were blocked in January and February. Some additional statistics are given as well that break the calls down by type, bank, etc.... Continue reading
Posted Mar 22, 2014 at Mark Collier's VoIP/UC Security Blog
Image
We just released our 4th annual Voice and Unified Communications: State of Voice Security Report. In this report, we cover the voice and UC issues affecting enterprise customers. We cover the threats and attacks, and also provide sanitized data and... Continue reading
Posted Mar 21, 2014 at Mark Collier's VoIP/UC Security Blog
Image
SecureLogix put out a press release for my new book, Hacking Exposed:UC and VoIP. The press releases includes a video summarizing the book. I posted a link to the video a few weeks ago, but it is here as well.... Continue reading
Posted Mar 9, 2014 at Mark Collier's VoIP/UC Security Blog
SecureLogix reduced the first of many videos, this one announcing my new book Hacking Exposed:UC and VoIP. Check it out: http://www.youtube.com/watch?v=4Nmsop8UNos... Continue reading
Posted Feb 26, 2014 at Mark Collier's VoIP/UC Security Blog
Here is an interesting report on a variety of fraud issues. One thing that struck me is that voice has become the preferred channel for fraud. Voice SPAM, scams, vishing, social engineering into contact centers, etc. Voice used to be... Continue reading
Posted Feb 26, 2014 at Mark Collier's VoIP/UC Security Blog
Image
Gary Audin posted a couple of reviews of the Hacking Exposed:UC and VoIP book on the NoJitter and Telecomm Reseller blogs. Thanks so much Gary. Check them out at: NoJitter Blog Post on Hacking Exposed:UC and VoIP Telecomm Reseller Blog... Continue reading
Posted Feb 15, 2014 at Mark Collier's VoIP/UC Security Blog
Image
The M3AAWG Special Interest Group (SIG) on voice fraud and security issues has published their agenda. This SIG will be held February 20-21. I will be on the panel discussing current solutions, with a focus on Telephony Denial of Service... Continue reading
Posted Feb 10, 2014 at Mark Collier's VoIP/UC Security Blog
Here is a link to an interview I did with Pierluigi, who writes the Security Affairs blog. Check it out: Security Affairs Blog Interview on TDoS Continue reading
Posted Jan 30, 2014 at Mark Collier's VoIP/UC Security Blog
The Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) is holding a special interest group in their annual conference in San Francisco, February 17-21, to focus on issues unique to voice. This includes Telephony Denial of Service (TDoS), robocalls, voice... Continue reading
Posted Jan 21, 2014 at Mark Collier's VoIP/UC Security Blog
Here is a bulletin from the FBI warning about toll free, 1-800 call pumping attacks. The basic idea (I cover this extensively in my Hacking Exposed: UC and VoIP book) is that the attacker, usually an unscrupulous service provider, generates... Continue reading
Posted Jan 9, 2014 at Mark Collier's VoIP/UC Security Blog
See the link below - Dancho Danchev who has blogged extensively about Telephony Denial of Service (TDoS), lists this issue as the #2 cybercrime trend for 2013. I agree and we are likely to see it grow in 2014. http://www.webroot.com/blog/2013/12/27/cybercrime-trends-2013-year-review/ Continue reading
Posted Dec 29, 2013 at Mark Collier's VoIP/UC Security Blog