Online calls unsafe locally
Office confidentiality is a top priority in any business, but should security checks include spy sessions? Pavla Tolonen thinks they might as well.
Now flaunted as a customized spy tool, the UCSniff is not quite the free spy gear it is made out to be. It was initially meant for safety checks to secure voice over internet protocol (VoIP), which included video and audio calls, but later became denounced as a spy tool capable of intercepting executive level calls. Its level of sophisticating, however, did not match this eager review.
Eager hackers will be disappointed to know that VoIP jacking with the UCSniff only works within the same building if you have access to a central network. Once you are in, however, intercepting calls and video should work swiftly with a name search, without the need of an extension number.
Capable of redirecting the phone signal from an online conversation, the tool was created by two researchers at the Viper Lab by Sipera Systems. An enhanced video version called VideoJak can also hijack an image, however, additionally; it can feed another alternative one into the receivers screen. This could be used to stretch footage during a robbery.
Windows and Linux compatible, UCSniff captures an entire conversation on audio or video and stores it as an avi.file, which can be viewed in most media players. Thankfully most offices have realized the potential of self-spying to discover security loopholes and now can deter external spy devices.
Interception has always been a tool for enterprise; however UCSniff has hit a successful nerve in making it a click-to-capture venture. Now spying is slightly easier and detection of spying methods even easier. There is, however, one persisting level of barriers surrounding this action – the ever-needed local area network connection, which may soon be removed in the face of more sophisticated spying equipment.
To use the tool, the device scrambles a computer’s address resolution protocol (ARP), which, if not reconfigured, can turn an entire network into DOS mode blowing the hacker’s cover and ruining any future surveillance attempts. Therefore the tool may not be completely welcomed by hackers.