Most Firms Underestimate Security Risks

Cisco recently released their annual security report. While the focus of the Cisco report is on data security, the principles described in the report also apply to managing telecom fraud.

A key finding from the survey of 1700 companies is that 75% of the Security Officers at these firms believed they were very well protected from attacks. However, "less than 50% of respondents use standard tools such as patching and configuration to help prevent security breaches and ensure that they are running the latest versions."

The report emphasizes that network security requires a constant effort to keep-up with new types of security and fraud attacks. Not only, do security managers need to keep their security tools current with the latest version, they should also deploy a multi-layered security implementation.

The report describes the following Cisco "Security Manifesto" which provides excellent principles for any enterprise security strategy.

  1. Security must support the business.
  1. Security must work with existing architecture – and be usable.
  1. Security must be transparent and informative.
  1. Security must enable visibility and appropriate action.
  1. Security must be viewed as a "people problem."

At TransNexus, we believe that these principles for cyber-security are also excellent guidelines for stopping telecom fraud. We have developed our telecom fraud detection tools so they can snap in to any existing network and provide informative analysis, visibility and appropriate actions to stop fraud automatically.

Our new NexOSS-FC product uses SIP AnalyticsTM to provide greater visibility into SIP traffic before it enters a network. By analyzing SIP messages at the ingress edge of a network, NexOSS-FC can identify, block or divert fraudulent traffic before it enters the targeted network. Analyzing SIP messages before call setup provides much faster detection than analyzing Call Detail Records (CDRs) which are collected after the call ends.

In addition, SIP messages provide additional information for fraud detection that is not available in CDRs. As the Cisco report recommends, SIP AnalyticsTM provides another layer of Telecom fraud detection that complements existing fraud detection tools based on CDR analysis.