Expert scares world with VoIP hacking proof

From Techworld -

An expert, Peter Cox, co-founder and ex-CTO of firewall vendor BorderWare, has released a proof-of-concept program to show how easy it would be for criminals to eavesdrop on VoIP-based phone calls.

Called SIPtap, the software is able to monitor multiple VoIP call streams, listening in and recording them for remote inspection as .wav files. All that is needed would be to infect a single PC inside the network with a Trojan incorporating these functions, although the hack would work at ISP level as well. The program can index 'IP-tapped' calls by caller - using SIP identity information - and by recipient, and even by date.

SIPtap demonstrates that the worst-case nightmares of VoIP vulnerability are now well within the capabilities of organized crime, which could use such a program to steal confidential data from companies, governments and even the police.