[VOIPSEC] Voipsec Digest, Vol 67, Issue 1

James Fang movsy at hotmail.com
Mon Jul 12 09:00:51 CDT 2010 

interesting though - in theory it is not that complicate to generate TDoS with free PBX softwares, automate tools and not-so-costly SIP trunk, however, I didn't see real benefit at this moment yet or real case happen in my workplace, I guess the two main reasons are:

1). benefit of start TDos is not immense

2). should not too difficult to trace back the bad guy

 

James
 
> From: voipsec-request at voipsa.org
> Subject: Voipsec Digest, Vol 67, Issue 1
> To: voipsec at voipsa.org
> Date: Thu, 8 Jul 2010 12:00:02 +0100
> 
> Send Voipsec mailing list submissions to
> voipsec at voipsa.org
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
> or, via email, send a message with subject or body 'help' to
> voipsec-request at voipsa.org
> 
> You can reach the person managing the list at
> voipsec-owner at voipsa.org
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Voipsec digest..."
> 
> 
> Today's Topics:
> 
> 1. Telephony Denial of Service (TDoS) (Mark Collier)
> 
> 
> ----------------------------------------------------------------------
> 
> Message: 1
> Date: Wed, 7 Jul 2010 16:54:27 -0500
> From: "Mark Collier" <mark.collier at securelogix.com>
> To: <voipsec at voipsa.org>
> Subject: [VOIPSEC] Telephony Denial of Service (TDoS)
> Message-ID: <C1B2A04D851DF54E826D5F61BB9E25710AA43593 at webmail>
> Content-Type: text/plain; charset="us-ascii"
> 
> I assume most everyone has seen the FBI press release on Telephony
> Denial of Service (TDoS). For those who have not, see:
> 
> 
> 
> http://newark.fbi.gov/pressrel/pressrel10/nk051110.htm
> 
> 
> 
> I am also seeing the term used to describe enterprise-directed DoS,
> where an attacker typically floods a contact center with calls. I have
> recently worked with both enterprises, service providers, and hosted IVR
> companies that have seen these attacks. The current motive seems to be
> traffic pumping/revenue generation, not DoS per se, but the side impact
> is that operation at the target sites is degraded or seriously
> disrupted, depending on call volume and trunk capacity. Interestingly,
> the targets I have talked to are primarily using TDM trunks, while the
> attackers (according to the service providers I have talked to) are
> using VoIP. I have a post on my blog with more information:
> 
> 
> 
> http://voipsecurityblog.typepad.com/marks_voip_security_blog/2010/06/mor
> e-on-telephony-dos-tdos.html
> 
> 
> 
> Is anyone else seeing these attacks?
> 
> 
> 
> ------------------------------
> 
> _______________________________________________
> Voipsec mailing list
> Voipsec at voipsa.org
> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
> 
> 
> End of Voipsec Digest, Vol 67, Issue 1
> **************************************
 		 	   		  
_________________________________________________________________
Turn down-time into play-time with Messenger games
http://go.microsoft.com/?linkid=9734385

More information about the Voipsec mailing list