VoIP is a Top 20 hacker target

The SANS Institute is one of the better security consultants: reasonably sober, not especially alarmist, and fairly forward-thinking. Each year, it puts out a list of the Top 20 Internet Security Attack Targets--the biggest honey pots that hackers go after. On this year's list--alongside faves like most things Windows-related and stuff like P2P apps--are VoIP servers and phones. SANS points out that Cisco Unified Call Manager, Asterisk and phones from several vendors have documented vulnerabilities, which could conceivably help compromise even the PSTN.

For more information about the SANS Top 20 Attack Targets:
- read this article from the SANS Institute