VoIP Abuse Project lures hackers with honeypot then blacklists them

Everybody speeds, but we don't go too fast because we never know when there might be a speed trap around the next corner. What if we added the penalty of being banned from driving on the highway, too? That's the same line of thinking behind the VoIP Abuse Project.

J. Oquendo, a security engineer who built the Arkeos VoIP honeypot and launched the VoIP Abuse Project, uses his PBX system to capture brute-force attempts against VoIP PBXes and blacklists the networks that hackers are using. His PBX listens in on a hacking attempt and answers the calls on his fake VoIP system honeypot to gather IP information about the network from which the hacker calls are originating. The information is then used to create a blacklist on banned networks to cut down on hackers.

In the past when Oquendo attempted to contact networks used by hackers, no one usually picked up the phone. The new solution means banned networks will have to get themselves off the blacklist by proving they are legitimate.

This system works in two ways--one it's its own brute-force measure that simply blocks hacking networks from accessing a VoIP system and two it serves as a deterrent to make hackers think twice about hacking a network that might have a honeypot and a VoIP Abuse Project blacklisting service attached.

For more:
- read this from Dark Reading

Related news:
Warding off big hack attacks
VoIP hacker gets 10 years in prison