A private branch exchange (PBX) works by having a piece of hardware that acts as a switchboard, sorting, routing and connecting all the calls that use the system. It’s an enticing option because a corporation owns the PBX system, not a phone company, and can cut the cost of having to get a specific phone line for each user in the organization’s central office. But despite its simple and straightforward approach, PBX hasn’t ignited the public’s attention the way the telephone first did.
There are two basic kinds of telecom fraud: PBX fraud (DISA), and voicemail fraud. With the first one, PBX (direct inward system access), fraudsters sell the PBX lines to third-party operators who sell long-distance at a high profit. Because these calls look the same to the service or equipment providers, all an intruder has to do is use a system command to get a dial tone. Once they’ve done that, they make long-distance calls on behalf of those selling them for profit.
A really simple way to help prevent this is to use access codes in your PBX system. As businesses grow and acquire more people, requiring each employee to input an authorization code or smart password can drastically cut down on the amount of long-distance hacks that take place after business hours. You can also block long-distance calls to the Caribbean, one of the biggest hotspots where long-distance calling fraud occurs.
By far, the most common type of telecom fraud to take place is through a PBX system’s voicemail. But whereas an intruder committing PBX fraud would use a system command to place long-distance calls, here they would do so via voicemail. And once they get the dial tone, they’ve successfully commandeered your PBX system for their own profit and benefit.
Having a complex voicemail password, changing it on a regular basis, and using the maximum number of characters are three of the easiest ways to cut down on voicemail fraud happening to your PBX system. Another is to delete a mailbox when an employee leaves the company because the longer the mailbox is not attended to (and the password left unchanged), the easier it is to hack into it. You can also limit the voicemail to internal calling so third parties have a much more difficult time accessing your PBX system voicemail.
Although there’s no foolproof method of protecting your PBX system against fraud, you can make it just about impossible for third parties to intrude. And remember to always monitor and analyze activity because the more in tune you are with your PBX system, the less chance there is of fraud taking place.
For all of your business PBX and telecommunications needs, contact Integrated Communications today.