March 2009 - Tony's Blog - Evangelyze Community Site

Attack Capable of Capturing SIP Device Password

A pair of VoIP security researchers claims to have discovered a method for acquiring the password from a SIP device . The attack seems to take advantage of a weakness in SIP security controls and authentication. When a call is being terminated, the SIP...

Published 27 Mar 2009 8:03 by tony

Filed under: VoIP security, VoIP fraud, attack, SIP device, password

Reality Check: Should you invest in IP PBX now, later or not at all?

Each month TechTarget's SearchUnifiedCommunications site does a podcast on a unified communications topic titled Reality Check. I appeared as a guest on this month's podcast and was interviewed by SearchUnifiedCommunications Associate Editor Elaine...

Published 25 Mar 2009 11:40 by tony

Filed under: VoIP, unified communications, PBX, podcast, Reality Check, IP PBX, searchunifiedcommunications

Talking Windows 7 on TechTalk Radio Show

I will be joining host Tom D'Auria live on the IMI-TechTalk radio show this Sunday. Our topic this week will be Windows 7. We will talk about what you can expect from the upcoming new desktop operating system from Microsoft. We will also focus on...

Published 21 Mar 2009 20:49 by tony

Filed under: KFNX AM 1100, IMI-TechTalk, Windows 7, radio show

The State of PCI Compliance

As Director of Security for Evangelyze Communications my primary focus is on the security implications of VoIP and unified communications and helping our customers to understand the risks and implement effective security controls to protect their unified...

Published 18 Mar 2009 14:38 by tony

Filed under: security, VoIP, unified communications, unified communications security, podcast, PCI compliance, PCI DSS, compliance

Forefront Security for OCS Finally Reaches RTM

Forefront Client Security and other Forefront Server Security products, such as Forefront Security for Exchange Server and Forefront Security for Sharepoint , have been around for some time now. Microsoft's Forefront Security for Office Communications...

Published 18 Mar 2009 11:06 by tony

Filed under: OCS 2007, Forefront Security for Office Communications Server, Forefront Security, OCS 2007 R2, malware, content filtering

INVITE of Death

Pretty cool name, huh? If you're going to create a new VoIP or unified communications attack, you want to have one with panache and it is hard to get a name with more impact than the 'INVITE of Death'. That said, the attack itself is not nearly...

Published 15 Mar 2009 19:51 by tony

Filed under: VoIP, VoIP security, SIP, INVITE, denial-of-service, OpenSBC, DoS, INVITE of Death

Securing SIP Trunks

SIP trunking provides organizations with a cost-effective, reliable method of connecting the internal network and telephony systems with external VoIP and traditional phone systems over the IP network. SIP tunking is quickly replacing traditional PRI...

Published 8 Mar 2009 12:57 by tony

Filed under: security, VoIP security, unified communications, unified communications security, UC, smartsip, sipera systems, sip trunks

Metasploit Founder Introduces WarVOX Suite for Voice Penetration Testing

The founder of Metasploit , HD Moore, has released a new set of tools for voice security research and penetration testing- WarVOX . Metasploit has been around for a few years and has offered security administrators and researchers a powerful and comprehensive...

Published 7 Mar 2009 22:18 by tony

Filed under: VoIP security, VoIP security assessment, MetaSploit, penetration testing, WarVOX, exploit generation, war-dialing

March 2009 - Tony's Blog

Syndication

Recent Posts

Archives