Sponsored Content: Beware of SIP Attacks

This article was sponsored by Bicom Systems, a leading unified communications provider.

Have you ever heard of something called an “invite of death?”

When you Google “What is a SIP attack,” that’s what comes up from our pals at Wikipedia. 

As per ​Wikipedia, ​an INVITE of Death “is a type of attack on a VoIP system that involves sending a malformed or otherwise malicious SIP INVITE request to a telephony server, resulting in a crash of that server.”

Unfortunately, devices and systems that are connected to the internet are exposed to security risks daily. Businesses who use or sell VoIP are exposed to SIP attacks every day. Sadly, some of these attacks can cost thousands of dollars in a matter of seconds! 

After hearing this, I thought why? Why would someone hack into your phone system? 

Well, the simple answer is for money.

Hackers sell numbers that are, for a lack of a better term, “stolen.” Companies are under the impression they are getting a good deal, but in reality, they are stealing already registered phone numbers. After making a few hundred calls (some being international) the actual owner of the phone numbers could end up with a hefty bill. 

It is an extremely unfortunate situation for some businesses. SIP attacks can cost a company so much money that they are forced to close their doors. 

So, what are they supposed to do? 

VoIP providers must take the necessary precautions to avoid a SIP attack.

I would like to introduce to you Bicom Systems’ ​sipPROT​.

sipPROT is an extremely effective telephony app that provides real-time protection from SIP attacks. The module can be added to ​PBXware​ or ​SERVERware​ and it provides protection from various SIP/TFTP attacks. 

This module works differently than other SIP protectors. sipPROT works with live traffic, actively blocking and unblocking IP addresses that threaten the system. For example, if someone were to enter invalid credentials, sipPROT automatically blocks them. You only get one shot to enter the correct password, which ensures that hackers do not have the opportunity to run a password generator. 

sipPROT uses three main functions to detect all attacks:

● Pattern Recognition

● Brute Force Detection

● SIP Protocol Anomaly Detection 

sipPROT is constantly running to ensure quality protection against hackers. It can band certain IP ranges and allows you to create a custom blacklist or white list of authorized phone numbers. 

Normally I would suggest visiting our ​website​ to learn more about sipPROT, but lucky for you, we have an upcoming live demo dedicated to sipPROT. This free live demo will educate you on how this application works.

On March 28th at 1 pm EST, Bicom Systems and ​ThinQ​ will be hosting a webinar on fraud protection. Hear real stories of how VoIP providers and vendors lost millions of dollars to brute-force break-in attempts, denial of service (DDS) attacks, and toll fraud.

Register for this webinar ​here​. 

Then, April 2nd at 1 pm EST, Bicom Systems is offering you a free, live demo of sipPROT. Don’t miss out on this opportunity and register for the live demo ​here​. 

These two events are something you will want to attend. If you have any questions regarding these two events please send our marketing team an email at ​marketing@bicomsystems.com​! 

Laura Kyle is a marketing assistant for Bicom Systems (www.bicomsystems.com).