Net Phone Customers Brace For 'VoIP Spam' 226
XaviorPenguin writes "If you think that Spam in your e-mail inbox is bad, wait until VoIP gets huge! According to a News.CNet.com story, your voice mail box on your Net Phones may be cluttered with ads for Viagra. '"The fear with VoIP spam is you will have an Internet address for your phone number, which means you can use the same tools you use for e-mail to generate traffic," said Tom Kershaw, a vice president at security specialist VeriSign. "That raises automation to scary degrees."'
If you think that is scary, you know the Do-Not-Call list that is out by the FTC, yeah, um, people with Net Phones may not be affected by this list and spammers/telemarketers may take this advantage for themselves. "
Doesn't sound all that bad... (Score:5, Funny)
Re:Doesn't sound all that bad... (Score:5, Funny)
"Who the hell is Samantha? She claims remembering you from some party the other night? And apparently she's hot for you!"
"But honey I assure you I was at work!"
What is this "wife" thing of which you speak? (Score:5, Funny)
You must be new here.
Re:What is this "wife" thing of which you speak? (Score:3, Funny)
Re:Doesn't sound all that bad... (Score:2, Interesting)
The VoIP spam will likely be IP based, in this case, they will either need my IP address or need a TON of bandwidth.
Re:Doesn't sound all that bad... (Score:5, Insightful)
Comment removed (Score:5, Interesting)
Re:anonymous calls? (Score:5, Interesting)
-Joe
Re:anonymous calls? (Score:2)
Last I knew, Skype was one of the few that fit that description.
Vonage uses SIP (RFC3261 et al) and RTP (RFC2833), as do most VoIP providers.
A.
Re:anonymous calls? (Score:3, Insightful)
Re:anonymous calls? (Score:4, Insightful)
Re:anonymous calls? (Score:3, Funny)
Er, (Score:3, Insightful)
Oh well, I'll still with my text spamed mobile. And those phonecalls I get, asking me to upgrade my phone. Oh.
Re:Er, (Score:2)
Heading OT, but... (Score:2)
In fact, I have reviews of two printers in there already.
As you can see in my sig, I also use it as a personal Ask Slashdot, seeing as I almost never get stories accepted, because mine are usually highly specific, and won't appeal to a general audience.
Re:Heading OT, but... (Score:2)
Not a single sales call. (Score:5, Informative)
Ive been a subscriber for 3 years and have not recived a single sales call.
I belive I have recived about 10 calls that got the wrong number.
The past is a poor crystal ball (Score:2, Insightful)
Compared to what other providers of similar services?
When I started receiving junk e-mail around 1995, I had been using e-mail for some ten years already. My great experience of a spam-free past did absolutely nothing to reduce the amount of junk I received later; it rather became more annoying to me in comparison.
Note that the article warns about future rather than past or present advertising. You
Re:The past is a poor crystal ball (Score:2)
Spam is like Graffitti (Score:4, Insightful)
It is someone hijacking a lightly guarded public place for their own benefit. The physical area that gets defaced by grafitti is too low in value to hire a full-time guard to prevent its defacement. The shitperson can deface the area quickly with paint and not get caught, providing a free advertising medium for himself and his (always a male) message.
Public law enforcement officers say that the faster an area that has been defaced by grafitti is cleared of the defacement, the less likely it is to be re-vandalized. I'm not sure if this applies to spam as well. However I do believe that spam in the same social catagory as grafitti.
Spammers, like grafitti vandals, are assholes. To accept as legitimate advertisers is only to ask to deluged with endless amounts of worthless spam. The legal arguments that are used against vandals should be refined and tested in court against spammers.
And, yes, grafitti vandals are assholes too. They aren't artists. They have the ability to create art but they don't. They foul public places. People who claim that grafitti vandals are artists are assholes too. So are the people who defend spammers as 'new media' advertisers.
Re:Spam is like Graffitti (Score:5, Insightful)
I think spam is more like 200 neighbors letting their dogs shit in your yard each day.
Or, to keep with your grafitti motif, spam is like an endless stream of grafitti painted on your own garage door.
I'm not disagreeing with your interesting post...just adding my 2c.
Re:Spam is like Graffitti (Score:2)
Either you have a dog shit fetish or your email requires a shovel to delete.
Re:Spam is like Graffitti (Score:2)
The correct analogy is that it's more like 200 neighbors purchasing and breeding dogs for the sole purpose of shitting in your yard each day.
Re:Spam is like Graffitti (Score:2, Insightful)
I am an asshole. I don't graffiti, but I think graffiti is art, provided that it's only put on public property, and that it's more than just a tag sprayed out in a single line.
What really offends me is when I see someone tag right over some really nice graffiti.
Re:Spam is like Graffitti (Score:2, Interesting)
I think your point that graffiti is an artform has merit, but I fail to see how that relates to who owns the canvas. Artwork or not, I reserve the right to decide how to decorate my property. Public property is property owned jointly by the public in general, and it's up to the public to decide how to have it painted.
If Michelangelo had painted my ceiling without my permission, I'd wonder what the guy was trying to sell and blacklist
Re:Spam is like Graffitti (Score:3, Insightful)
Graffiti can be art, in much the same way that the Mona Lisa would have been an artistic tour de force had she been tastefully tatooed onto the back of an unwilling peasant woman instead of put on canvas. Whatev
Re:Spam is like Graffitti (Score:2, Insightful)
Re:Spam is like Graffitti (Score:3, Insightful)
See, there are times when the appropriation of public space is the only way to speak because the state controls all legal forms of communication. This isn't as true in the United States, although the large media conglomerates
sigh... (Score:5, Interesting)
Re:sigh... (Score:5, Informative)
Meanwhile, spammers are usually already immoral people who have no respect for the law anyway. Viagra, afterall, is illegal to sell without a proper perscription, and a contact via web form is simply not good enough to generate such a perscription. So, their offer is already illegal to begin with... another law on top of that making the communication illegal isn't going to affect them much.
Re:sigh... (Score:5, Insightful)
It's just too durn bad too. I'm sure so many of us were heartbroken to see them go. Just because they were legitimate doesn't mean they weren't a pain in the ass.
You make a very valid point, but whatever the reason, I'm glad to see them gone, even though they did occasionally provide some entertainment when I was in a particularily sadistic mood.
Same options for both parties (Score:3, Insightful)
Re:Same options for both parties (Score:3, Insightful)
Odd.... (Score:4, Informative)
Re:Odd.... (Score:2)
Back door... (Score:3, Informative)
Every VoIP phone that has a real-world phone number also has an SIP address that can be used to send calls to it as well... If those addresses get captured and traded around like e-mail addresses, then all a tele-spammer would need is the bandwidth and they're all set to call you with a spam-like ad.
And the Do Not Call Registry law doesn't even apply because it registers phone numbers, not SIP addresses. So that and any other telephone-based law isn't going to work here.
Re:Back door... (Score:5, Insightful)
Re:Back door... (Score:5, Insightful)
OK, I know virtually nothing about VoIP, but I'm betting I'm right here... wouldn't that also block legitimate calls from others using VoIP phones? (I would think almost certainly for calls from other VoIP providers, unless they route out through POTS, and very possibly other calls from people using your provider as I'd imagine they would route those calls directly to save on costs.)
Re:Back door... (Score:3, Interesting)
Re:Back door... (Score:2)
I would've thought filtering VoIP spam would be reasonably easy - how is an automated caller going to deal with "press 1 for foo, press 2 for bar, press 3 to leave a voicemail"?
Besides, why is picking a random IP address to dial
Re:Back door... (Score:3, Insightful)
Re:Back door... (Score:5, Informative)
No, because while they all use VoIP, they themselves are not (yet) interconnected. Even if they were, the only call switch that your phone should talk to is the one hosted by your provider, since it is the determining factor as to where calls go, and all voice packets are routed through their network anyways.
The individual providers still need a way to interconnect to all other providers, and currently the only way to do that is via POPs (points of presence) and SS7 trunks to the POTs network. Generally once traffic is determined to not be on the CLEC's local network, its passed out to whoever they connect to to handle outbound routing, be it VoIP or not. I doubt any serious LEC would use the internet as a major interconnect with another provider. The security risk alone is too much of a risk.
Also note that not all providers currently use the same protocol (as has been mentioned in other posts), so even if someone spoofed a call from your provider, they would have to know how to talk to your phone, be it MGCP or SIP or something else.
Just because your phone "has an world reachable IP address" doesnt mean it is wide open to attacks. I think the most serious issue to be dealt with will be DOS attacks, since most IVoIP (internet VoIP, ala Vonage.. as opposed to internal VoIP on private networks) cannot control their QOS between customer and callswitch.
tm
Re:Back door... (Score:2)
Not true - anyone on the internet can call me over VoIP if they know my POTS number: they just make an ENUM lookup for it (a DNS system used for translating POTS numbers to VoIP URIs) and they get bac
The FCC cannot regulate the world. (Score:5, Insightful)
The FCC cannot regulate the entire world - just the US.
Spammers can operate from other countries without worrying about FCC's do-not-call lists (or using compromised boxes for that matter).
Re:The FCC cannot regulate the world. (Score:2)
Micheal Powell, head of FCC, is Colin Powell's son not his brother.
Re:The FCC cannot regulate the world. (Score:2)
This is the reason why you shouldn't rely on TV and movies alone to learn about politics.
Do you really believe that Kerry, if elected, will cut the Saudis off and risk losing their lobbying power in OPEC? Bush is kissing the Saudis' ass to in hopes of getting lower oil prices, which tends to help the economy and Kerry will be no different.
You know... (Score:5, Funny)
So buy! Buy! Buy!!
the medieval times had it right (Score:2)
Or just responded without buying (Score:3, Funny)
Or, say, if everybody responded without buying -- you know, visit that nice little website they linked in their message (say, 2,000,000 times a day). Or go ahead, call the number they left. String the salesman out for 20-30 minutes.
phone spam (Score:5, Funny)
Re:phone spam (Score:3, Funny)
Dude, that's so 20th century. The hip Nigerian now says "HELLO, PLEASE PAY US $50.000 FOR OUR 50TH ANNIVERSARY OR YOU WILL BE SNIPPED."
News.com and VoIP = FUD (Score:2, Insightful)
With that in mind, I take this with a grain of salt. I have Vonage and I disabled my voicemail the first day I got it. Why? I own an answering machine which my wife is somewhat attached to and to be honest, so am I.
If you don't like a function, just turn it off!
df
Some kinky game ? (Score:3, Funny)
I own an answering machine which my wife is somewhat attached to and to be honest, so am I.
Answering machine bondage, that's a new one. How do you attach the handcuffs ?
Re:News.com and VoIP = FUD (Score:2)
do not call list (Score:2, Insightful)
Re:do not call list (Score:2, Insightful)
But not to IP addresses, e-mail addresses, amateur radio callsigns, snail mail addresses, social security numbers, credit card numbers, passport numbers...
Loophole? How? The list covers exactly one kind of number (the phone number); you hope to add one more (the IP address) and claim this modest change to amount to "closing" a loophole. What about all the other kinds of numbers or
Re:do not call list (Score:2)
Re:do not call list (Score:3, Informative)
The correct solution (or atleast the better one!) is law similar to the Norwegian one;
It is illegal for marketing purposes to adress communications to individually adressable telecommunications-units except when either the user has given prior, informed consent, or the user is a current customer of yours.
Applies to spam SMS, Fax, Email, voicemail, telephone etc.
The logic behind al
May??? (Score:4, Interesting)
address book (Score:4, Interesting)
Ok ... I'm ready. (Score:5, Interesting)
Private callers learn to dial their appropriate * code -- otherwise they go do the Boulder, CO time clock.
Out-Of-Area callers, 1-000, 1-700 and other assorted numbers go to the US Naval Observatory time clock.
My phone almost never rings with sales calls. Almost. You'll always get that cold caller (and VoIP makes doing this cheap). There's always been a cheap way though and those that DO get through are treated, well, rudely. It's "my" phone line.
Of course I'm the one that gave up on POTS now decades ago -- did similar BUSY, CID type "tricks" with ISDN forever with the added benefit (like VoIP) that "data lines" are automatically unpublished _and_ unlisted. As usual -- the first hint that I get that my "phone company" is selling my number and they lose a customer.
VoIP is a doubled edged sword for the sales attempts IMHO.
Re:Ok ... I'm ready. (Score:2)
BTW: why do you feel it's necessary to 'protect' yourself from all this? I get less than 1 marketing call per week since I signed up to the Do Not Call list and it's certainly not worth setting up a maze of stuff which would make my phone useless.
Re:Ok ... I'm ready. (Score:2)
Re:Ok ... I'm ready. (Score:2)
You've inadvertently implemented a phone version of the netgear DoS of the university of wisconsin clock [wisc.edu].
I'm sure you can be more creative with the phone number...
Re:Ok ... I'm ready. (Score:2)
Call my home number PRIVATELY and it won't ring -- those callers are automatically [select] call-forwarded to the time clock service number. Unblock and my phone rings.
This may end up being good (Score:3, Interesting)
Look at it this way more people are likely to end up with VoIP phones in the future than are likely to really bother with E-mail. When John Doe Consumer starts getting racy, obscene and highly offensive voice mails inviting him to "gain 4 inches now" or "view barely legal teens" every day he's going to care a lot.
And yes spammers will try to set up operations overseas but many of the countries that tolerate the spammers now have less freedoms in general and sexual mores are more government enforced. They can ignore millions of porn E-mail spam easily, but when they have their citizens getting racy voice mail (even if they can't understand the words I'm sure the spammers will leave nothing to the imagination in tonal deliverance) or they end up with egg on their face for tolerating people sending things through them that would be illegal for their citizens they'll end up cutting off the easy access for spammers.
Frankly the only thing that'll end the reign of terror spammers have on the net at large today will be them shooting themselves in the foot by going too far. I can't wait for it to happen, but until then they can send all they want to my spam trap addresses, my Baysian filters love to be fed. :)
Re:This may end up being good (Score:2)
First.... (Score:2, Funny)
We will pay for the operation with discrete and sensible banner ads for Black Talon ammunition, Baretta, Colt, and Remmington arms, find a p
Please deposit .50 escrow to complete your call (Score:3, Insightful)
Re:Please deposit .50 escrow to complete your call (Score:2)
Er, no. Microsoft and there other friends in big business land like to say this a lot. But really, isn't the root cause of spam the people who pay the spammers?
Pay by the minute? EEK! (Score:5, Interesting)
Vonage (Score:2)
Re:Pay by the minute? EEK! (Score:4, Informative)
FYI: On my Cingular phone, 7 is the erase button after a message, but if you push 7-7 during a message it will stop playback and erase it. Don't know if it works on all phones/plans or just mine.
Re:Pay by the minute? EEK! (Score:2)
Works on my plan too. I just push 3 whenever and the message is nuked. It gets used. A lot.
Re:Pay by the minute? EEK! (Score:2)
Market forces tend to weed out these pratices. ATT had a consumer support problem. With number portability, they got the message something needed to change. When phone SPAM becomes too much and Cingular fails to keep consumers when the contract expires, then they will either change or fold. I love a free market!
Comment removed (Score:5, Insightful)
Re: (Score:2)
Re:Sounds like security specialists spreading FUD (Score:2)
>a service provider to assist in routing calls outside of a business network.
Not neccessarily. You could just have one free ENUM database and have all phones call each other directly.
Many SIP phones are set up to accepts calls from any other phone. But phones would only ring if they see their own phone no/username.
So it is a bit like email: you can run your own mailserver or use a SMTP provider. And sp
Re:Sounds like security specialists spreading FUD (Score:2)
Re:Sounds like security specialists spreading FUD (Score:4, Informative)
having the IP address of a VoIP phone is not enough to send them a voicemail. You have to know (at least on any decently secure system) a phone number, and an IP address. And, to leave a message you have to have an open communication channel with the messaging server, not the phone (again on any decently secure system).
I manage VoIP for a 9000 node network. Only the messaging server can leave a voicemail in a persons voicemail box, and to leave a message on the system you have to open a connection to the server (over sip, or from the pstn) at any rate, if it was incoming spam to my organization it would have to come over the pstn (we are voip internally, to all of our branches, but pstn everywhere else). Thus, spam would have to be initiated from the PSTN, and would be limited to a total of about 200 simultaneous calls (we have about 10 PRIs for connections to the outside world, we run about 60% usage on those PRIs).
Thus realistically a telemarketer could only leave about 80 messages simultaneously before starting to get the no circuits available error from our provider, and it would tie up 80 of their phone lines for the 30 seconds it would take to leave the message, and they would have to pay long distance etc for those calls. Now, inside our organization, you can send a voicemail to everyone at once, but it is very restricted (IE, you can only do this from 3 accounts, and to make a call from one of these 3 accounts you have to know the pin numbers to allow the call through).
In our setup, I can't think of a single way to really automate sending everyone a voicemail, besides hacking one of those 3 accounts, or calling all 9000 people... granted you could have a voice recorder call the numbers, and leave messages, but telemarketers already do that, and with VoIP it would be no different. You can't just email the voicemail to the accounts, as the voicemail system only recognizes voicemail that it has put in the email accounts (it keeps a database of unique IDs that it puts in the email and only reads the emails it generated).
Furthermore, emailing 9000 copies of a 300KB message, would require alot more bandwidth than sending 9000 4KB html viagra ads. Why would a telemarketer do it? Or a spammer? Bandwidth is cheap, but it still costs something. Sure, they can use their zombie nets, and then its not their bandwidth, but, if they are sending multi-megabyte chunks of mail, alot more people will notice that they are infected if their net connections noticably slow down.
Re:Sounds like security specialists spreading FUD (Score:2)
Wrong.
If the VoIP world goes the way of SIP (Session Initiation Protocol) then everyone will need to use a service provider to assist in routing calls outside of a business network.
And wrong. Go look at the ENUM system (http://www.e164.org/ [e164.org]) which will translate PSTN phone numbers into VoIP URIs. Besides, I think in the long term the PSTN
Voice recognition software for VoIP spam filtering (Score:2, Interesting)
Dinner... (Score:2, Insightful)
OTOH, Unsolicited anything is the suck. Hey Seller-of-Things, guess what, I have PLENTY of ways to get in touch with you if I want something. Thanks.
Re:Dinner... (Score:3, Interesting)
Re:Dinner... (Score:2)
Neither does a full answering machine. What's the point again?
If it's so friends can get in touch with me, no problem. I carry a text pager, not a phone. They know the web page and number if it's an emergency.
Umm.... (Score:2)
May?
Simple solution-phones which can be set to do this (Score:3, Interesting)
Re:Simple solution-phones which can be set to do t (Score:2)
Re:Phone Systems (Score:3, Interesting)
Once you have that, you just make sure you assign 4-digit extensions and don't mention what they are on your outgoing message (also disable the 0 for general mailbox option). Voila - a
easier to IP block and only allow friends (Score:2)
If your friend(s) don't have static IPs, they can use one of the free DNS-alike services to let your filter know what their current (dynamic) IP address is.
Then your filter blocks every IP except the ones you know you want.
Works with email spam too... (Score:2)
Or the nice girl you gave your number to that said "don't call me, I'll call you" and didn't give her number.
But you could easily use a blacklist. My firewall has a redirect command. It would be cool to forward spammers to the FTC-complaints hotline.
VOIP? (Score:2)
bandwidth (Score:2)
where is the bandwidth coming from?
spam works because of the insecurity aspects of smtp. voip on the other hand (as presented by the article via 'net phone' has costs associated with it)
i dont see massive vonage asterisk boxes 'open' that are going to allow some spamer to directly send endless 'barely legal' or 'viagra' commercials to my vonage voice mail box.
It's easy - Speak in a foreign language! (Score:2, Funny)
I figure that it could work in reverse in other countries, answer in French in the US and that'll totally confuse any spa^^^telemarketeer.
Of course there could be the odd person who speaks French in which case answering in Dutch will work even better.
Goed middag, hoe gaat het?
But of course if all else fails you can totally confuse them (and get extra geek points) if you speak to them in Klingon:
SoH DichDaq H
Fighting spam.. (Score:2)
Q. Why do people spam?
A. They Make money off of it.
Suggestion: With how open all our modes of communication are, and closing them being such a bad thing to do, perhaps our money would be better spent sending the message across to people that they should not be responding to this spam. Never, ever respond to a credit card offer in the mail. Never, ever respond to any ad of any kind sent to your email. Never follow the links.
It is
you mean more messages not to listen to? (Score:2)
Spam filters for voip calls... *sigh* (Score:3, Insightful)
Well this is interesting.
Looks like it's time for homes to have small computers which runs a small voip routing server to handle calls of various natures:
Sounds like an open source project to me.
Also a great way to gather the numbers of known spammers and distribute a list of said numbers/ip addresses for blocking.
The phone companies, as noted in the artcle, thinking that it isn't a big deal is basically shrugging responsibility for something which they should take more seriously. Given the nature of phone spam, email spam, and phone sms/messaging spam, to think that voip spam is a low priority target is pretty slipshod.
*shrugs* Looks like voip filtering will just be an extension to the massive spam filtering already being done. Wish I could send a bill to the spammers for the extra work they are basically forcing me to do. :(
Re:I'd buy some but I can't understand the message (Score:2)
Re: (Score:2)
Re:Autodialers? (Score:2)
And some women are not too bright and has never dated a geek before.
True, this is