Tel: (08)6364 0600

PBX Hacking

PBX Hacking
Guy Steward | 22-11-18

Introduction

With the NBN rollout well underway in Australia and the decommissioning of ISDN and copper lines, the required transition of changing existing phone systems over to SIP, or VOIP as it is commonly known, is becoming the norm.

These new SIP phone systems are great, as they offer much cheaper call rates and a plethora of features. You can also say goodbye to high monthly line rental charges, resulting in reduction of overall running costs.

As the number of Internet based phone systems grow, so does the risk of someone hacking your PBX. What is a PBX? PBX stands for Private Branch Exchange, which is a private telephone network used within a company or organization, to make and receive calls.

Why would someone want to hack a PBX

The main reasons PBX systems are hacked, is to either find ways to make international calls at no cost to themselves, or to setup premium rate numbers which they make the system continuously call and collect a healthy percentage of that call. May also just be to bring your system down.

Your call provider is not responsible for your PBX security or the calls that have been made.

How to reduce these risks and secure your PBX

  • Ensure Extension passwords are complex and changed on a regular basis.
  • Avoid using default voicemail PIN numbers, and also consider changing these regularly.
  • Remove any unused extensions and voicemail boxes.
  • Turn off use of remote access if possible. Otherwise ensure there is a secure way to access.
  • Where possible, limit the use of allowed international calls or countries.
  • Keep an eye on your phone bills, to understand what is normal in terms of numbers called and average cost per month.
  • Consult with your PBX maintainer, to assist with this.


If you have any concerns, about your current security or worried your phone system may have been comprised. Contact the team at Qbit

 

Return to News list

Contact Us Now

To discover how Qbit can satisfy your business’ IT requirements or to discuss our services, please contact us today.