Large-scale Attacks Against VoIP and Videoconferencing Happening Today?
Are there large-scale attacks happening against VoIP and videoconferencing systems today? Or is it limited to one particular system? In a posting this morning to the VoiceOps mailing list, J. Oquendo...
View ArticleTwo New Asterisk Security Vulnerabilities Related To SMS And AMI
The great folks at the Digium / Asterisk Security Team have issued two new security advisories that folks running Asterisk should pay attention to. They are: AST-2013-006: Buffer Overflow When...
View ArticleWorking On Restoring VOIPSEC Mailing List Archive Functionality
We are unfortunately aware that the mail archives for the VOIPSEC mailing list have not been functioning for a long time. The list still does have occasional active conversations on it and anyone is...
View ArticleWishing You A Very Secure 2014!
Happy New Year! Welcome to 2014! We’re looking forward to more activity happening here at VOIPSA this year… stay tuned for more information! In the meantime, we hope that you all have a very secure...
View ArticleVoiceOps – Mitigating SIP Threats With SBC Policies, Auto-Blacklisting
There’s a good discussion going on right now (September 2014) in the VoiceOps mailing list about how you can mitigate SIP threats by configuring the policies and settings on your session border...
View ArticleSlides: Reboot the Open Realtime Revolution – #MoreCrypto (Fall 2014)
Olle Johansson is back with another set of excellent slides about VoIP security and the need to have “MoreCrypto” everywhere. It’s a great set of slides that talks about where we have come from and...
View Article7 Asterisk VoIP Security Advisories Issued
The Digium / Asterisk Security Team has obviously been extremely busy ensuring that Asterisk is as secure as possible given that yesterday they released 7 security advisories, although only one of them...
View ArticleVerizon Launches Voice Cypher Secure VoIP Mobile App… With A Government Backdoor
Verizon Wireless this week did something that initially seemed quite impressive – they launched “Voice Cypher”, an app available for iOS, Android and Blackberry that promises secure end-to-end...
View ArticleSS7 Security On Techmeme? A Reminder About Interconnected Systems…
SS7 security issues reported on Techmeme? I did a double-take yesterday and, as Jay Cuthrell noted on Twitter, wondered if this was a “ThrowbackThursday” taken to the extreme. But no, there was...
View ArticleAdministrative Update: Resetting user passwords for authors
If you are an author here at Voice of VOIPSA and are wondering why you just received an email about a password change, I went through and reset all the passwords on our user accounts. There was no...
View Article