Organisations are adopting VoIP technology – which routes telephone
calls via internet connections – without properly assessing the
heightened security risks, according to a new white paper from
KPMG.28 Oct 2004
Voice over Internet Protocol – or VoIP – is the transport of telephone calls over an internet connection. For a company that already pays for a broadband connection, long distance calls can become free of charge, albeit that VoIP handsets tend to be much more expensive than standard handsets.
The report claims, "there is a distinct absence of information detailing the risks and associated risk management practices. As a result, organisations' preparedness for these new technologies is inadequate."
It warns of security risks akin to denial of service attacks – with networks being flooded by meaningless traffic; interception tools being used to eavesdrop on calls; and redirection of calls to premium rate numbers. It also suggests some possible solutions.