Wednesday, January 25, 2012

Video conferencing and meeting room snooping

There is a very good article in the NYTimes concerning the use of video conferencing devices as means to snoop in a meeting room. The issue is not new and dates back in the age of PABX and analog phones.

However, the ease with which HD Moore was able to enter a number of corporations is concerning.

Also, I distinctly remember a consultant from a vendor that makes both video conference equipment and firewalls tell us to "disable the protocol inspection for SIP and think of having the server directly on the Internet, as it would be easier than opening all the required ports".

Coming from a consultant who is supposed to know his subject: scary ...