Thursday, February 22, 2007

VOIP Threat

As if there weren't sufficient problems to worry about with unsecured computers, routers, hubs, and browsers, with the growing adoption of IP based telephony, security issues are becoming important for phones as well. According to this article from CNET, CISCO has recently discovered flaws in several versions of its IP based phones. Apparently, in many versions of its Unified IP phones, there is an implementation error in the code which prevents the default user account from ever being disabled, or from having its password changed. While the company has promised to release software to address the problem, there is no word on when that software will actually be available.

The bottom line is that, as more devices take advantage of IP technology, they will create more potential vulnerabilities which can be exploited by malicious third parties. Therefore, in addition to concerns about cost and quality, security should be a paramount concerns for any new system implementation.

No comments: