Incorrectly configured VoIP systems are putting companies at a variety of risks.
According to NTA Monitor, incorrectly configured VoIP systems are exposing companies to a variety of risks. It claimed that having voice and data traffic sharing one network with only ‘virtual' separation has significant efficiency benefits and effective configuration can avoid any crossovers.
However, mistakes or shortcuts can expose organisations to risks such as network users eavesdropping on internal telephone calls or phone users being able to access the network.
Roy Hills, technical director at NTA Monitor, said: “The route to a robust VoIP deployment and the efficiencies that an integrated network can provide is via careful configuration, particularly separation and encryption, and a considered view of the implications, policies and procedures associated with VoIP.”
The company claimed that sensitive corporate data and conversations between directors could be a target for network users who are able to ‘sniff' or collect voice traffic over the network and subsequently piece it together.
By encrypting the voice traffic, this potential threat can be avoided, also a VoIP server may hold a large volume of data centrally, such as all speed dials, and this aggregation of data creates a tempting target and a system with a higher risk profile.