VoIP Security

by Moshe Yudkowsky

Wired has a brief note about VoIP and AJAX security, and mentions that over twenty tools are freely available that can trash and hack a VoIP call.

The current crop of VoIP softphones (Free World Dialup and the like) are too limited in extent to be of much interest to criminals. But now that Skype can outdial to the PSTN, clearly it's only a matter of time before we see the first widespread outbreak of SPIT (spam over Internet Telephony). Imagine the joy of receiving pre-recorded telephone messages selling dubious finanacial instruments and poisoness body-part enhancers.

I have to admit that there's a bright side. PSTN calls cost money, and people who allow their systems to become infected with SPIT viruses will at least pay for their carelessness. Or cluelessness.