VoIP scam netted a million

How to hack your way to success

By Nick Farrell

Fri Jun 09 2006, 07:08

DETAILS of how a Miami man allegedly earned a million dollars by defrauding Voice over IP providers have been leaked by prosecutors.

The scheme was a doddle and a bit of a wakeup call for VoIP providers.

Edwin Andres Pena found the prefixes that Internet phone companies use to identify calls that are allowed to be routed over their network. He did this by "slamming" Internet phone networks with thousands of test calls using different variants of prefixes.

With a mate, he looked for vulnerable ports and routers in companies and hacked into the network to get administrator names and passwords.

Apparently, he conducted six million scans of AT&T's worldwide network alone from June to October of 2005.

Using this information, Pena reprogrammed the routers to allow the routers to handle VoIP calls, and to disguise the true source of the traffic.

He then sold phone call minutes under a discounted rate and routed his customer's calls to the companies network via the routers he had hacked.

More here.

US man pleads not guilty to celebrity email hacking Faces 121 years of porridge Wednesday, 2 November 2011, 13:03 PM Read more	Major Zeus fraud case comes to conclusion in UK Last defendant convicted Wednesday, 5 October 2011, 15:39 PM Read more
FBI arrests more Lulzsec and Anonymous suspects Trio charged with hacking offences Friday, 23 September 2011, 12:36 PM Read more	China claims it was the victim of half a million cyber attacks in 2010 Suggests US and India to blame Wednesday, 10 August 2011, 12:00 PM Read more
The rise, fall and legacy of the hacker group Lulzsec How it all started and where it all went wrong Monday, 4 July 2011, 15:53 PM Read more	Lulzsec takes down Brazilian government web sites and asks police to arrest two men More hacker arrests could be on the cards Wednesday, 22 June 2011, 16:28 PM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

PHP Web Developer - html,

The Company: My client b...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

VoIP scam netted a million

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review