Protect your IP PBX - safety guidelines
Protect your IP PBX - make sure nobody can access your system
Due to the wide usage of IP PBX-based solutions by a large range of customers and existing security issues with different PBX's especially Asterisk we kindly ask you to pay closer attention to such customers of yours or your own IP PBX environment. Also a 3CX IP PBX already has been compromised.
These security issues can lead to big losses caused by "brute force" attacks and generating calls to extremely expensive destinations or premium numbers like Austria Premium, Somalia, Ethiopia, Sierra Leone, etc.
Calls to these destinations mostly take place during night time with unusually high ASR (close to 90%) and ACD (over 15 minutes) parameters.
Due to this and to protect our (and your) customers, XeloQ blocked certain problematic destinations but it is impossible to block all destinations because sometimes it are normal calling destinations.
If you make use of local PBX's and use XeloQ to terminate your traffic, then make sure that your local IP PBX solution can't be hacked.
Change all standard passwords and protect your environment with available tools and tighten your firewall rules and remote access to these systems.
Please follow the guidelines below as well.
More tips to make the use of your IP Telephony system more secure
(for both resellers & XeloQ customers)
Due to the wide usage of IP PBX-based solutions by a large range of customers and existing security issues with different PBX's especially Asterisk we kindly ask you to pay closer attention to such customers of yours or your own IP PBX environment. Also a 3CX IP PBX already has been compromised.
These security issues can lead to big losses caused by "brute force" attacks and generating calls to extremely expensive destinations or premium numbers like Austria Premium, Somalia, Ethiopia, Sierra Leone, etc.
Calls to these destinations mostly take place during night time with unusually high ASR (close to 90%) and ACD (over 15 minutes) parameters.
Due to this and to protect our (and your) customers, XeloQ blocked certain problematic destinations but it is impossible to block all destinations because sometimes it are normal calling destinations.
If you make use of local PBX's and use XeloQ to terminate your traffic, then make sure that your local IP PBX solution can't be hacked.
Change all standard passwords and protect your environment with available tools and tighten your firewall rules and remote access to these systems.
Please follow the guidelines below as well.
More tips to make the use of your IP Telephony system more secure
(for both resellers & XeloQ customers)
- Clean up your PC and make sure usernames / passwords of your system and your customers' SIP accounts are not stored in your email.
Your PC should be free and cleaned from viruses, Trojans, backdoors, keyboard loggers or other phishing methods to catch usernames / passwords.
Take the right steps and use Lavasoft Ad Aware, JV16 Power Tools, Eset NOD32, Norton, McAfee or other similar software to perform these tasks. Advice your customers to do the same with their PC's / mail systems.
- Do not give any unauthorized individual access to your Reseller system or customers' accounts and store usernames / passwords in a safe place.
Each user / reseller is responsible for the correct use of it's own account information as stated in our terms & conditions since 2002.
- Request a new password for your reseller system by email; we will tell you the new password by telephone or email after your email system is fully secured. You can tell us the preferred method when contacting support@xeloq.com ; we prefer informing you by telephone.
- Make sure your Customer accounts do not hold 1000's of Euro's but moderate amounts up to Eur 200 - Eur 300 maximum.
- Change SIP accounts' passwords of your customers where needed. Customers can also change this themselves when they login to their account.
- Limit the concurrent number of calls to the REAL limit that your customer needs. Do NOT set it at 0 (unlimited).
- Request IP Authorization for your IP PBX of those from your customers. Then only traffic from that specific IP address is allowed to make calls.
You can send IP authorization requests to support@xeloq.com if you feel you or your customers need that and if the used IP PBX is capable of doing so.
Please follow up on these precautions as soon as possible.
Kind regards,
XeloQ IQ-Telephony Support Department
- RT @maaikeheeremans: IT-er? Test Lync en ontdek hoe je telefoniekosten kan verlagen. Nog 20 plaatsen. Aanmelden: http://t.co/IugFbTs7 # ...woensdag 16 mei 2012 om 04:49:39
- Protect your #Asterisk or other IP #PBX from hacking and fraud. Read our extensive blog now. Let's fight #VoIP fraud? http://t.co/6WMb68Txdinsdag 15 mei 2012 om 01:41:58
- A very good weekend to all our worldwide #VoIP customers. Remember that you can always pay instantly for your credit using #PayPal.#SIP #HNWvrijdag 11 mei 2012 om 06:21:27
- Securing your #Asterisk #VoIP #PBX to protect against hacks is important. Putting it behind NAT is a good start:... http://t.co/wHi9yQRudonderdag 3 mei 2012 om 05:10:16
- Vanaf 1 mei 2012 belast #XeloQ #VoIP de Nederlandse telefoonnummers tegen maar 2,99 per maand. Een geste naar onze trouwe klanten. Bedanktdinsdag 1 mei 2012 om 03:01:50