Story image

Kiwi company takes UC security to a multi-billion dollar toll fraud problem

31 Jan 18

A local Auckland company is vowing to put a dent in the billions of dollars lost to toll fraud across unified communications (UC) networks.

Virsae, a cloud service management platform provider for UC, has launched a security management solution to fight back against fraud figures that can cost organisations a collective total of $38 billion, according to the Communications Fraud Control Association.

Virsae says that widespread adoption of VOIP is to blame for such a colossal loss because traditional IT network security isn’t designed to protect it.

According to Virsae COO Ross Williams, hackers are taking full advantage of poorly-protected UC networks, and they are cashing in.

“Toll fraud is just the start – though at nearly twice the size of plastic card fraud, it’s a huge problem. But it’s just one of many threats facing UC environments,” he comments.

“It’s all about money. Hackers have got you over a barrel when they can crash your UC platform with an endless flood of session requests, or clog SIP channels through repeated calling.”

Traditional software applications on IT networks are supported by AV software and firewalls, however UC networks don’t have those protections. Virsae says UC networks generally rely on session border controllers (SBCs) – but they are so specialised that some IT managers are not familiar with them.

If IT managers don’t know how to handle them, SBC management, updates and reporting are all at risk of being neglected, Williams explains.

“Organisations routinely update anti-virus and anti-malware solutions, harden infrastructure, and update policies. UC security should be managed in the same way.”

Virsae has launched its Security Manager that is built with real-time threat awareness. The company says the platform is designed to make SBC attacks more visible and to pinpoint network vulnerabilities.

“In the same way house alarms and CCTV intruder detection systems activate alarms to instantly alert homeowners, Security Manager watches and flags suspicious activity, keeping UC managers in the picture and one step ahead of the bad guys,” Williams continues.

Virsae also provides a multi-vendor UC service management platform called VSM. It manages customer experience and network infrastructure vendors including Microsoft, Cisco, Sonus, Avaya, Verint and Juniper.

The VSM provides customers and partners the ability to get to the root cause of UC, contact centre, infrastructure, and security issues. The VSM platform processes more than 9 billion service management transactions per month.

Virsae is currently showcasing Security Manager at Avaya Engage in New Orleans.

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Verifi takes spot in Deloitte Asia Pacific Fast 500
"An increasing amount of companies captured by New Zealand’s Anti-Money laundering legislation are realising that an electronic identity verification solution can streamline their customer onboarding."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.