Speaking at the Gartner IT Security Summit in Washington, D.C., Gartner analysts called at least one widely cited VoIP security vulnerabilty an overhyped threat.
Analyst Lawrence Orans was talking about eavesdropping, which would result in unauthorized interception and listening in on VoIP calls.
According to SearchSecurity.com, Orans called such instances unlikely because such transgressions require LAN-based access. Should the bad folks get that far, Orens added that such attempts could be "easily highlighted by monitoring LAN traffic for anomalous behavior."
While admitting that VoIP can be vulnerable to Denial of Service attacks, Orens maintained that the VoIP security big picture should not scare IT away. "Forge ahead if it makes good sense for your enterprise," he said.