Tech Insight: Securing Cisco IP Telephony

We do not hear of a lot of IP Telephony hacking, but it still goes on. The latest problem for Cisco was demonstrated at the 29th Chaos Communications Congress last December. A Cisco IP phone was manipulated through physical access, to cause it to execute malicious code. Connecting via the IP phone's serial port allowed attack code to be loaded and to take control over other devices.

The lesson: Learning about IPT hacking may not seem to be high on the list of IT concerns, but you ignore or underestimate it at your own risk.

Moving to IP Telephony (IPT) not only opens an enterprise to IP network security issues, it also opens the enterprise to a new set of telephony security problems that are independent of the IP networks they reside on. Looking for knowledge to protect IPT is mandatory.

Read the full article here.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.