SureTel

Business VoIP guide

VoIP Security & Fraud Prevention

Protect business VoIP from preventable fraud with safer setup, permissions, routing controls and provider support.

  • • Licensed South African ISP
  • • VoIP, SIP Trunking and Cloud PBX support
  • • Secure setup and support guidance
  • • Since 2010

Educational resource · Not a quote · Licensed SA ISP · ICASA licence 0009/CECS/AUG/09

Answer first

VoIP security, in one paragraph

VoIP security reduces preventable business-phone risk by combining secure setup, controlled user access, strong credentials, outbound-call rules, updates, monitoring and fast support when something looks unusual. SureTel helps South African businesses configure VoIP, SIP Trunking and PBX environments more safely, with practical controls that reduce exposure and make fraud harder to miss. Request VoIP Pricing to discuss your setup.

Summary

  • • Explains VoIP toll fraud and SIP fraud in plain English
  • • Covers secure setup, routing controls and permissions
  • • Includes Cloud PBX, SIP Trunking, Yeastar and 3CX considerations
  • • Provides incident-response steps without technical exploit details
  • • Routes readers to VoIP, SIP Trunking and Cloud PBX services

Best for: business owners, IT and operations managers, call-centre managers.

Problems this solves

Where VoIP security problems show up as business problems

VoIP security problems usually appear as business problems: unexpected charges, suspicious calls, unreachable phones, poor call control, or uncertainty about who should respond. The point is to make the risks understandable without frightening the buyer.

  • Unexpected call charges

    Risk: Unauthorised outbound calls, often after hours or to high-cost destinations.

    Buyer concern:How did this happen, and who can stop it?

  • Weak extension security

    Risk: Simple passwords, shared users, unused extensions and poor permission control.

    Buyer concern:Do all users need the same calling rights?

  • Exposed PBX access

    Risk: Admin portals, SIP credentials or remote access exposed without proper controls.

    Buyer concern:Is our phone system visible to the public internet?

  • Uncontrolled international calling

    Risk: Routes open to destinations the business does not use.

    Buyer concern:Can we block risky or unnecessary call destinations?

  • No clear incident process

    Risk: Unusual activity is seen too late, or nobody knows who to contact.

    Buyer concern:What happens if we suspect fraud?

When this guide fits

Where this guide fits best

This guide is useful when a business is moving to VoIP, running an onsite PBX, adding SIP trunks, managing remote users, or trying to reduce the chance of toll-fraud surprises.

  • New VoIP migration

    Set controls correctly before go-live.

  • Existing onsite PBX

    Review public exposure, updates, permissions and call routes.

  • SIP trunking

    Define allowed routing, authentication and provider-side controls where available.

  • Multi-branch business

    Manage extensions, roles and outbound rules consistently.

  • Call centre or high-volume team

    Combine call control with monitoring and support procedures.

  • Remote or hybrid users

    Avoid unsafe shortcuts for offsite phone access.

For the commercial service page, see business VoIP. For a plain-English intro, read what is VoIP?

Controls that reduce exposure

What safer VoIP setup usually involves

This section explains what each control does and why it matters. It does not provide step-by-step exploit or firewall configuration recipes.

Control areaWhat it meansWhy it matters
Strong credentialsUnique, strong extension/admin credentialsReduces account takeover risk
Extension permissionsUsers get only the calling rights they needLimits damage if one account is abused
International restrictionsBlock or approve destinations by business needReduces toll-fraud exposure
Premium-rate blockingRestrict high-cost destinations where suitableHelps prevent unexpected charges
After-hours rulesLimit risky outbound calling outside business hoursReduces overnight/weekend fraud exposure
Admin portal controlAvoid unnecessary public management accessReduces unauthorised access attempts
Firmware/software updatesKeep PBX and endpoints maintainedReduces known vulnerability exposure
Monitoring and alertsWatch for abnormal traffic patternsHelps detect suspicious use earlier
Provider escalationKnow who to contact when risk appearsSpeeds up containment and recovery

SureTel support scope

  • Secure VoIP setup guidance
  • SIP Trunking configuration support
  • User and extension permissions
  • Call route and destination controls
  • International and premium-rate calling restrictions where suitable
  • Firewall/router guidance
  • Updates and support for supported systems
  • Monitoring and incident support within SureTel’s supplied solution scope

SureTel configures and supports these controls within its supplied solution scope. The exact controls that apply depend on the VoIP service, SIP trunk, PBX platform and customer requirements — see business VoIP, SIP Trunking and Cloud PBX.

Cost guidance

What shapes the cost of a secure VoIP setup

There is no separate public price for this guide. Security controls are usually scoped as part of the VoIP, SIP Trunking, Cloud PBX, onsite PBX or support engagement.

  • VoIP service pricing

    Route users to business VoIP for service pricing and packaging.

    business VoIP

  • SIP Trunking

    See SIP Trunking for trunking-specific requirements and scope.

    SIP Trunking

  • Onsite PBX review

    May depend on PBX platform, age, access, network and required support.

  • Network or firewall work

    May require separate assessment, installation or maintenance scope.

  • Incident recovery

    Depends on urgency, access, logs, platform and root cause.

Use “Request VoIP Pricing” and tell SureTel whether you are setting up new VoIP, reviewing an existing PBX, or worried about suspicious call activity.

Use cases

Practical South African business examples

Short, practical examples. The details differ per business, but the shape of the controls is similar.

  • SME moving from landlines to VoIP

    Needs secure default setup, extension permissions and basic outbound controls.

  • Business with an onsite Yeastar or 3CX system

    Needs PBX security review, updates, remote-access controls and route restrictions.

  • SIP trunking for an existing PBX

    Needs trunk authentication, routing rules, allowed destinations and escalation process.

  • Multi-branch business

    Needs consistent extension naming, permissions, calling policies and support contacts.

  • Call centre or outbound team

    Needs call-route governance, monitoring and clear after-hours rules.

  • Remote and hybrid users

    Needs safe access methods, strong passwords and device/user permission control.

Decision support

Cloud PBX vs onsite PBX security considerations

AreaCloud PBXOnsite PBX / Yeastar / 3CX
InfrastructureHosted in provider environmentCustomer site or private environment
Customer responsibilityUsers, passwords, device handling, policiesPBX exposure, updates, firewall, credentials, backups, route rules
Provider roleConfigure and support within platform scopeSupport depends on platform, access and maintenance agreement
Fraud controlsExtension rights, routing controls, monitoringPBX rules, routes, extension rights, firewall and provider controls
Best fitBusinesses wanting managed hosted voiceBusinesses needing local PBX control, integrations or specific features

Important: Do not position one as universally “secure” and the other as “unsafe”. Explain that both can be configured well or poorly.

VoIP fraud prevention checklist

  • Use strong, unique credentials.
  • Remove unused accounts and extensions.
  • Limit international routes to business-required destinations.
  • Block premium-rate destinations where suitable.
  • Restrict after-hours outbound calling where practical.
  • Keep supported PBX systems and phones updated.
  • Avoid unnecessary public admin access.
  • Review call logs and unusual activity.
  • Escalate quickly if suspicious call patterns appear.

Educational

What is VoIP security?

VoIP security is the set of controls used to protect internet-based calling from unauthorised access, misuse, service disruption and avoidable fraud. It includes PBX settings, SIP trunk rules, user permissions, network controls, updates and support processes.

  • VoIP fraud

    Usually means unauthorised use of a phone system or SIP account.

  • Toll fraud

    Usually means unauthorised outbound calls that create charges.

  • SIP fraud

    Usually relates to SIP accounts, trunks or routing being abused.

Secure VoIP does not mean risk-free; it means configured, monitored and supported responsibly.

Why SureTel

Practical support, not unsupported cybersecurity promises

SureTel’s role is to make business VoIP practical, supported and easier to manage. The page connects security back to good setup and accountable support, not unsupported cybersecurity promises.

  • Licensed SA provider

    Licensed South African ISP and communications provider.

  • VoIP, SIP & Cloud PBX

    VoIP, SIP Trunking and Cloud PBX experience.

  • Yeastar & 3CX support

    Support for Yeastar and 3CX environments where suitable.

  • Route & extension control

    Practical call-route and extension control guidance.

  • Network readiness

    Router/firewall and network-readiness support where in scope.

  • Clear escalation

    Clear escalation when customers suspect unusual call activity.

  • Single accountable partner

    Single accountable communications partner within SureTel’s supplied solution scope.

“SureTel helps reduce avoidable VoIP risk through practical configuration, support and call-control guidance within the systems and services we supply or manage.”

Process

How SureTel approaches a secure VoIP setup

The process should feel simple and reassuring. It removes red tape without pretending every environment is identical.

  1. 1. Understand the phone environment

    New VoIP setup, SIP trunking, Cloud PBX, Yeastar, 3CX or existing PBX.

  2. 2. Review users and calling needs

    Who needs local, national, mobile, international or after-hours calling?

  3. 3. Check network and access

    Review router/firewall, remote access, PBX exposure and support access where relevant.

  4. 4. Configure practical controls

    Credentials, extension permissions, call routes, restrictions and support procedures.

  5. 5. Test calling and monitoring

    Confirm inbound/outbound calling, call quality, route behaviour and expected restrictions.

  6. 6. Document support and escalation

    Make sure the business knows what to do if suspicious activity appears.

  7. 7. Maintain and review

    Keep settings, accounts, permissions and supported systems updated over time.

Incident response

If you suspect VoIP fraud — a short response checklist

This checklist helps a business act quickly. It stays at the action level and does not include technical attack or configuration guidance.

StepWhat to do
1. Identify unusual activityUnexpected call volume, unknown destinations, after-hours spikes or sudden charges.
2. Contact SureTel or supportEscalate quickly with account, number, timeframe and symptoms.
3. Suspend risky routes where appropriateTemporarily restrict affected destinations, trunks or extensions if needed.
4. Preserve logsKeep call records, dates, times, destinations and user/extension details.
5. Review credentials and permissionsReset affected credentials and remove unused access.
6. Check PBX, router and remote-access exposureConfirm management access and SIP access are not unnecessarily public.
7. Restore service safelyRe-enable calling only after the likely cause and controls are reviewed.

Incident response depends on the customer environment, platform, access and provider controls. Do not promise zero loss, guaranteed recovery or guaranteed prevention.

For broader business cybersecurity — endpoint security, penetration testing, security monitoring or full IT risk management — a dedicated cybersecurity or managed IT scope is the right home. That is separate from VoIP-specific fraud prevention.

FAQs

VoIP security & fraud prevention FAQs

What is VoIP toll fraud?

VoIP toll fraud is unauthorised use of a VoIP system, SIP trunk or PBX to make calls that the business did not approve. It can create unexpected charges, especially if international, premium-rate or after-hours calls are allowed without proper controls. Good setup reduces risk through strong credentials, route restrictions, user permissions and monitoring.

Can business VoIP be hacked?

Any internet-connected system can be exposed if it is poorly configured, outdated or accessed with weak credentials. Business VoIP risk can be reduced by avoiding unnecessary public access, using strong passwords, managing permissions, keeping supported systems updated and limiting call routes to what the business actually needs.

How does SureTel help reduce VoIP fraud risk?

SureTel helps with secure setup, user and extension permissions, routing controls, international or premium-rate restrictions where suitable, firewall/router guidance, updates and support within the systems and services it supplies or manages. The exact controls depend on the VoIP service, SIP trunk, PBX platform and customer requirements.

Should we block international calling?

Many businesses do not need international calling on every extension. A safer approach is to enable only the destinations and users that need it. International restrictions, premium-rate blocking, spend controls and after-hours rules can help reduce toll-fraud exposure where they fit the business.

Are SIP trunks secure?

SIP trunks can be used securely when they are scoped and configured correctly. Risk depends on authentication, allowed routes, PBX configuration, provider controls, firewall setup and how credentials are managed. Businesses should avoid treating a SIP trunk as “set and forget” infrastructure.

Are Yeastar and 3CX systems secure?

Yeastar and 3CX systems can be part of a secure business phone environment when installed, updated, configured and managed correctly. Risk increases when admin portals are exposed unnecessarily, credentials are weak, updates are ignored, routes are uncontrolled or remote access is added without proper controls.

What should we do if we suspect VoIP fraud?

Contact SureTel or your phone-system support contact immediately, preserve call logs, identify unusual destinations or extensions, and suspend risky routes where appropriate. After containment, review credentials, permissions, PBX exposure and route rules before restoring normal calling.

Is this a cybersecurity service?

No. This page provides VoIP-specific security and fraud-prevention guidance. Broader cybersecurity work such as endpoint security, penetration testing, security monitoring or full IT risk management should be handled through a dedicated cybersecurity or managed IT scope.

Related guides: what is VoIP?, how to set up VoIP, VoIP equipment guide, VoIP bandwidth requirements and VoIP CRM integration. Broader business cybersecurity guidance will live on a dedicated page separate from this VoIP-specific article.

Next step

Need safer business VoIP?

Speak to SureTel about VoIP, SIP Trunking or Cloud PBX setup with practical fraud-prevention controls, support and call-routing guidance.

Educational resource · Not a quote · This guide provides general VoIP security and fraud-prevention guidance. It is not a full cybersecurity audit, legal opinion or guarantee against fraud.