The Communications Fraud Control Association (CFCA) put out their semi-annual fraud report last year. It has been out for a while and I have been referring to and quoting it, but I wanted to point out where to find it and point out a few key bits of information. First, here is the link. You have to register to get the actual report, but it comes to you almost instantly.
The report is based on a survey of some 34 service providers. The CFCA estimates that the global fraud issue costs service providers, enterprises, and consumers some $40 Billion a year. This makes fraud the #1 voice, VoIP, UC security issue out there. Think about that number - is there any data security issue that approaches this? Financial fraud, DDoS, etc.? No way.
Some of the types of fraud only affect service providers, but a good number affect enterpises. Of the 5 largest types of fraud, two affect enterprises:
- $5 Billion a year - compromised PBX/voicemail systems - examples are compromised DISA features, which are provided to users who generate toll charges to enterprises. Often small enterprises, who don't have the expertise to properly configure their PBXs.
- $4 Billion a year - International Revenue Share Fraud - affects enterprises when call generators drive traffic to premium numbers.
The United States is the #1 country where fraud originates. The top 5 countries where fraud terminates are Cuba, Somalia, Sierra Leone, Zimbabwe, and Latvia.