Report an incident

Get 24/7 incident response assistance from our global team

Talk to sales

Just fill out the form, and our representative will contact you soon.

Join the Cybercrime Fighters Club

Please review the following rules before submitting your application:

1. Our main objective is to foster a community of like-minded individuals dedicated to combatting cybercrime and who have never engaged in Blackhat activities.

2. All applications must include research or a research draft. You can find content criteria in the blog. Please provide a link to your research or research draft using the form below.

Success Story

Group-IB x ENCRY TELECOM Success Story

How to ensure enhanced protection for a virtual PBX
Download PDF

About ENCRY TELECOM

ENCRY TELECOM is the world’s first virtual PBX with heightened confidentiality and data encryption from ETT, a licensed telecommunications service provider.

 

ENCRY TELECOM (EncryptoTel) telecommunications services and software solutions are available for purchase in any country by activation through a personal user account. They are sold on the company’s official website.

 

ENCRY TELECOM offers a full range of telecommunications services based on an innovative cloud PBX with proprietary confidentiality protection methods. The company’s partners include Waves Platform, the telecommunications company MTel, the CIS Innovation Fund, and others.

 

ENCRY TELECOM is part of ENCRY, a multi-business corporate group that specializes in high-tech telecommunications and digitization products. It has telecommunications service licenses issued by the Russian Federal Service for Supervision of Communications, Information Technology, and Mass Media.

Industries

Telecommunications

Operations

Telecommunications and additional services

Network coverage

Anywhere in the world

Number of employees

50+
Virtual phone numbers in over 150 countries with free calls within the system
An extensive list of telecommunications services with a developer-friendly API
Cloud storage of encrypted voice data
Integration with popular CRM systems (Amo, Bitrix, SalesForce, Zendesk)

Executive Summary

According to the Cyber-Telecom Crime Report 2019 by Europol’s European Cybercrime Centre, the cost of telecommunications fraud is estimated at €29 billion a year. Zion Research forecasts that the global VoIP market will grow up to $140 billion by 2021. This means that the vulnerability of current IP telephony services to cyberattacks, theft, and data leaks will become an even more urgent matter.

ENCRY TELECOM develops a multifunctional VoIP technology and a B2B platform with integrated blockchain services to bolster confidentiality and communication security. Every day, the company improves its services and pays particular attention to guaranteeing the privacy and security of its virtual PBX.

As such, the founder of ENCRY TELECOM believes that audits of the company’s web application should be conducted on a regular basis to minimize risks of new vulnerabilities after new features are added.

This prompted the company to look for a long-term partner to carry out audits of its web application as it is developed. After researching the main players on the information security market and studying reviews of many companies in this field, ENCY TELECOM decided on Group-IB.

Why Group-IB?

We based our decision on reviews and recommendations of other app developers, who had experience working with Group-IB auditors. The criteria we set for our potential contractor were vast experience and an impeccable reputation as a vendor. Group-IB met these requirements perfectly.
Igor Bityuskin
Igor Bityuskin
Commercial Director, ENCRY TELECOM

Group-IB Solution

Detected business logic and environment vulnerabilities in the web application
Classified detected vulnerabilities and assessed their severity based on the CVSS v.2 methodology
Tested whether detected vulnerabilities could be exploited
Produced a detailed description of the technical work performed and its results
Identified threats that exploit detected vulnerabilities
Developed expert recommendations on how to eliminate detected vulnerabilities and configuration errors.
Our primary goal is to offer our users a secure and reliable application. Before sharing our code with Group-IB specialists so that they could perform an audit, we ran our own comprehensive tests on our application. However, a thorough audit requires an outside perspective from a true professional with years of experience in this field. Working with Group-IB reinforced this conviction.
Roman Nekrasov
Roman Nekrasov
CEO, ENCRY TELECOM

Results and Outlooks

A comprehensive inspection of the platform’s structure and detected vulnerabilities
A detailed list of recommendations on how to improve the web application’s security

The security analysis report was highly informative, clear, and well structured. ENCRY TELECOM is closely following the recommendations on how to eliminate detected errors and is planning a second inspection of their web application, which is a service that Group-IB offers its clients free of charge after detected vulnerabilities have been eliminated.

I believe that internal and external security audits of infrastructure are essential steps towards a mature and competitive product. During their assessment, Group-IB experts demonstrated a serious and systematic approach, which was exactly what we expected from one of the leaders in information security.
Andrey Chmora
CTO, ENCRY TELECOM
As a high-tech blockchain-powered telecommunications platform developer, ENCRY TELECOM understands current attack vectors that are typical for this industry and works tirelessly to strengthen the security of its services. We are more than happy with the start of our successful cooperation and we hope to enjoy a long-term partnership in implementing future projects.
Andrey Bryzgin
Head of Audit and Consulting, Group-IB

Related Products

Security Assessment
Security Assessment
Security Assessment and Audit - a 360-degree expert look at your information security.
Download PDF