- Partner Types
- Why TalkTalk Business?
News & Insight
- Channel Live
- Are UK workforces ready for the ‘Fourth Industrial Revolution’?
- 3 key take-aways from Partner Summit
- 5 cloud related things businesses have on their minds
- Soapworks - A home to be proud of
- How our network investment helps digital transformation
- Embracing the cloud - are your customers ready?
- The journey to reinvent workspaces
- It’s time for the Gigabit reality
- Introducing our Head of Product Strategy, Ken Johnson
- Delivering Gigabit connectivity to UK businesses
- If nearly 1 in 2 of your customers are thinking about expanding internationally, are you winning that voice business?
- 11 steps to reduce the risk of telecoms Fraud over Christmas
- Improving the frequency and quality of our Ethernet provisioning updates
- Introducing MyNet
- British businesses are unprepared for the Fourth Industrial Revolution
- TalkTalk Business Awarded Mitel Platinum Partner Status
- Ofcom withdrawal of 0500 numbers
- TalkTalk Business appoints Duncan Gooding as Chief Operating Officer
- Marston's Telecoms choose TalkTalk Business for Ethernet
- Next steps on the journey for a better Openreach
- Ofcom’s Business Connectivity Market Review
During public holidays the industry always sees an increase in attempted PBX hacks primarily due to the fraudster attempting to take advantage of empty premises or reduced business operations, such as the internal spend and usage monitoring.
The threat of hacks are too significant to be ignored. TalkTalk Business recently commissioned research with Cenuswide which indicates that over a quarter of businesses have fallen victim to a PBX hack in the last 5 years with the average cost of the attack reaching over £12,000.*
To help your customers increase their PBX security and get on the front foot in the fight to prevent financial loss, check out my 11 top tips:
- Lock down international and premium rate access if this type of calling is not going to be required.
- Remove all default password settings when deploying the PBX and limit access to any maintenance ports.
- Change passwords and access codes regularly and create longer passwords using both alpha and numeric. Avoid 000, 1234 and extension numbers.
- Consider limiting call types by extension - if a user has no requirement to ring international or premium rate numbers then bar access to them.
- Review any DISA (Direct Inwards System Access) settings and control or deactivate – this is typically used to allow employees to dial in from home to make outbound calls (usually high value call types – mobile and international in particular) via the company PBX .
- Secure the system physically - site it in a secure communications room and restrict access to that area.
- Regularly review call usage - Analyse billed calls by originating extension and identify irregular usage.
- Ensure you fully understand your systems functionality and capabilities and restrict access to those services which you do not use.
- Block access to unallocated mailboxes on the system and change the default PIN on unused mailboxes.
- Be vigilant for evidence of hacking – not being able to obtain an outbound line is usually a good indicator of high volumes of traffic through your system. Check for calls outside of business hours.
- Assess security of all PBX peripherals and applications: platform, operating system, password and permissions scheme. Carefully evaluate the security of any on-board remote management utility (e.g. PC Anywhere).
Lastly, I hope you and your customers have a great Christmas and prosperous New Year, should you have any questions for our Fraud team you can get in touch directly by contacting email@example.com
*TalkTalk Business & Cenuswide Next Generation Voice Survey (1,000 participants)