Don’t Phreak Out – 4 Simple Ways to Deter Phone System Hackers
Phone hacking is becoming a real problem in the UK, costing businesses millions of pounds each year. It can result in bill shock and loss of service, both of which can be highly disruptive to your business operations.
The hacking of business telephone systems, otherwise known as “phreaking”, “phone fraud” or “dial through fraud”, is a very profitable business for criminal gangs. The global cost of phone system fraud during 2011 was estimated at over $4.5 billion and is often linked with terrorist organisations. As one of the top 5 countries where phreaking occurs, this sophisticated form of fraud is currently costing UK businesses millions of pounds a year.
When a company is targeted, the costs incurred can range from a few pounds to over £90,000, depending on the destination dialled, the number of calls being made, and how long it is allowed to continue before being detected and stopped. Note that Christmas and Easter are popular times of year for hackers, as organisations are often closed for a longer period of time and fraudulent activity is therefore more likely to go undetected for some time.
However, there are some simple things which you can, and should, do now to reduce the risk of this happening to your company:
1) LOCK DOWN YOUR PHONE SYSTEM AND CHANGE YOUR PINS
Phone hacking is commonly perpetrated by gaining access to your company’s internal telephone system, or PBX. Often, this is achieved by dialling in and accessing your voicemail, then a call divert is set up to another number (often an expensive international destination).
This is why it’s essential to change your voicemail PINs on a regular basis (ensuring that they are not still set to the default “1234”). If you don’t require the dial through or divert facilities on your phone system, disable them or ask your system maintainer to do so.
2) BAR INTERNATIONAL/PREMIUM RATE CALLS
The majority of numbers dialled by hackers are to international destinations and premium rate numbers. Ask your telecoms provider to bar calls to these destinations if nobody within your company needs to dial them.
3) MAKE SURE YOU ARE ALERTED TO SUSPICIOUS ACTIVITY
Does your telecoms provider offer the facility for you to set up email alerts when suspicious, expensive or long-duration calls are made? If you are unsure, ask them if such a service is available. If you don’t have time to set it up yourself, ask your telecoms provider if they can set one up for you.
4) FIND OUT WHAT ELSE YOUR TELECOMS PROVIDER CAN DO TO HELP
Ask your telecoms provider if they have any other tools available to help you reduce the risk of fraud. Some providers can set a cap so that you will not be charged more than a set amount during a period of fraudulent activity, regardless of the actual amount of charges amassed during this time. Your provider should also be actively monitoring all the calls on their network and reacting speedily when any suspicious activity is spotted.
The recent economic down-turn is seeing a rise in this form of criminal activity. I’d suggest acting now to stop them getting away with it at your expense.