NORM
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Is your phone line a 5-figure<br />
liability waiting to happen?<br />
Diane Johnson writes...<br />
Business<br />
Telephone fraud is yet another reality of our connected world and may represent<br />
a major risk to your business. Fraudsters are targeting exchanges at public and<br />
private sector organisations and size does not matter! The latest figures show<br />
that the cost of this kind of fraud is costing businesses over £1bn in the UK alone.<br />
FIXED LINE FRAUD is carried out in a number of<br />
ways. Fraudsters can gain access to a phone<br />
exchange and will use it to make unlimited calls<br />
to numbers of their choosing. The fraudsters<br />
use widely available “war-dialing” software to<br />
hack into exchanges. Commonly known as Dial<br />
Through Draft (DTF) or Direct Inward System<br />
Access (DISA).<br />
The fraud involves the outward dialing to<br />
premium rate numbers.<br />
One example of this fraud involved Hambleton<br />
District Council in Yorkshire. Following a number<br />
of attempted hacks, the Fraudsters accessed<br />
the Council exchange on Christmas Day. The<br />
exchange then made multiple calls to numbers<br />
in Bosnia, Pakistan and Ethiopia resulting in a<br />
bill of £30,000. The exchange owner is<br />
contractually obliged to pay the bill and has little<br />
or no comeback due to the international nature<br />
of the fraud. The Council had to pay up.<br />
Minimise the risk<br />
Protect your telephone systems as much as you<br />
can. If fraud happens on your telephone system<br />
the cost to you could be considerable. It is the<br />
system owner’s responsibility for any calls<br />
passed through the system whether they are<br />
legitimate or fraudulent whatever time of day or<br />
night on any day of the week. Check your Terms<br />
and Conditions on Fraudulent calls.<br />
Fraudsters/Hackers usually target a<br />
telephone system out of office hours and<br />
generally at weekends when they know they<br />
have a free run from Friday night to Monday<br />
morning and they can run up your call charges<br />
during this period. Your telephone system can<br />
be lit up like a Christmas tree all weekend with<br />
calls being made and nobody is in the office to<br />
notice it.<br />
To help you prevent a situation like this<br />
happening to you, you need to be more security<br />
aware. It’s not just the office door that needs to<br />
be secure. While no telecommunications system<br />
can be made entirely free from the risk of fraud,<br />
diligent attention to system security can reduce<br />
the risk considerably. Although the guidance<br />
below may seem obvious, it is not always done.<br />
Change passwords, PINs and access<br />
codes at least four times a year for<br />
both switch (software based/remote<br />
access) and hardware-based<br />
voicemail systems and automated<br />
attendant services, especially Night<br />
Service.<br />
If someone leaves your company<br />
change their voicemail PIN. Using a<br />
PIN such as 1234 or 0000 is just<br />
like leaving the door wide open for<br />
the opportunist fraudster.<br />
Ensure your staff know how<br />
important it is to secure their PINs<br />
and passwords as above and<br />
document policies to enable that.<br />
If you are unsure of how to check the<br />
security of your telephone system,<br />
please contact your system maintainer<br />
and ask them for a security check of<br />
your system. You may be charged for<br />
this service, but think how much it<br />
may cost if you don’t!<br />
Quick mobile tip<br />
There is one clear message that comes out of<br />
the News of the World debacle and this relates<br />
to voicemail security. While mobile operators<br />
may not authenticate caller ID, changing your<br />
phone settings to require a PIN when checking<br />
your voicemail is a good idea. ■<br />
Fraudsters accessed the Council exchange and then<br />
made multiple calls to numbers in Bosnia, Pakistan and<br />
Ethiopia resulting in a bill of £30,000<br />
aftnonline.com 21