Comcast Accidentally Published 200,000 'Unlisted' Phone Numbers (arstechnica.com) 23
An anonymous reader quotes a report from Ars Technica: Comcast mistakenly published the names, phone numbers, and addresses of nearly 200,000 customers who paid monthly fees to make their numbers unlisted. The names and numbers were made available on Ecolisting, a directory run by Comcast, and picked up by third-party directories. After discovering the mistake, Comcast shut Ecolisting down, gave $100 credits to affected customers, and advised them that they can change their phone numbers at no charge. This is similar to a mistake in the early 2010s that resulted in Comcast paying a $33 million settlement in 2015.
The Denver Post reported last week: "For years, customers have had the ability to pay a small sum per month to ensure their phone numbers and personal information remain off of telephone and online directories. But in January and February, thousands of people across the country received letters from Xfinity telling them the company had inadvertently published personal information on Comcast's online directory, Ecolisting.com. The issue affected 2 percent of Comcast's 9.9 million voice customers, the company said." In a statement to Ars, Comcast said, "We have corrected this issue for our identified customers, apologized to them for this error, and given them an additional $100 credit. We are working with our customers directly to address this issue and help make it right, and are taking steps to prevent this from happening again."
Comcast also warned that "this information could be available on online directories or through other public sources that Comcast does not control." If that's the case, the company advises contacting those online directories directly and/or changing your Xfinity Voice telephone number.
The Denver Post reported last week: "For years, customers have had the ability to pay a small sum per month to ensure their phone numbers and personal information remain off of telephone and online directories. But in January and February, thousands of people across the country received letters from Xfinity telling them the company had inadvertently published personal information on Comcast's online directory, Ecolisting.com. The issue affected 2 percent of Comcast's 9.9 million voice customers, the company said." In a statement to Ars, Comcast said, "We have corrected this issue for our identified customers, apologized to them for this error, and given them an additional $100 credit. We are working with our customers directly to address this issue and help make it right, and are taking steps to prevent this from happening again."
Comcast also warned that "this information could be available on online directories or through other public sources that Comcast does not control." If that's the case, the company advises contacting those online directories directly and/or changing your Xfinity Voice telephone number.
Re: (Score:2)
This go-around, Comcast needs to add 3 more zeroes to the end of that fine amount......
I would agree. According to their own numbers they've "paid" just under $20 million in $100 credits. Compared to how much they made while providing the access to the data or how much they could be fined for doing so, that sounds like a huge bargain.
Ima get some popcorn.
You put 'unlisted' in quotes... (Score:4, Insightful)
You should have put "Accidentally" in quotes
"Unlisted" has a specific meaning (Score:2)
I'm not quite sure what "unlisted" would mean in this post-landline world. I've never seen the ce
People on that list... (Score:4, Interesting)
Re: (Score:2)
E. Coli Sting? (Score:3)
What a strange name for a web site: e. coli sting.
I had to check it out to see what it really was supposed to be.
Now I'm off to Expert Sex Change dot com to see what that's about.
Re: (Score:3)
And when you're ready to go through with it, make sure you sign the consent forrms with a high-quality pen -- from your friends at Pen Island.
How much to change address? (Score:2)
Re: (Score:2)
Well, at least Comcast doesn't have to worry about being sued by these most affected by the leak, since dead can't sue.
Re: (Score:1)
Too late (Score:2)
That list is out there now. And it still has value to analyze past call metadata.
Who's going to jail? (Score:2)
Re: Who's going to jail? (Score:1)
Everyone knows in Soviet America state companies like Comcast are above the law.
Hilarious, Part II (Score:3)
The second hilarious article I've read on /. today.
The first was the "Bitcoin Drops Almost 30 Percent" article, but this one actually made me laugh.
"Pay us money to keep your number private, we'll make sure it's safe and secure and.....oops, it's out there. You want a refund? Errrrr....let me talk to customer service about that, can I put you on a short hold?"
So What ? (Score:3)
Happened to me with Ameritech (Score:2)
I paid the money for an unlisted, unpublished number. It was a very nice number to have. All of a sudden I started getting sales calls.
Contacted Ameritech and they did readily admit they somehow accidentally changed it. Thanks for them screwing up, I had to change my number and give up a good memorable number.
Worth noting that they make money when they complete calls to your phone, so it is in their best interest to have your number out there.
Unlisted (Score:2)
Pay money for this? (Score:2)
You have to pay money so they don't list your phone number?
Phone number security or lack of ... (Score:3)
Phone number publishing has never been very secure. For example: configuring your phone, landline or mobile, to not send caller id does not prevent the id from being sent. The source system sets a flag to not display the id at the destination but always sends the information. It is up to the destination system to respect the flag or not. It is not unusual to have the caller id not show up on the called phone line but if you leave a voice mail, the message system will dutifully record and play back the calling number. The phone switch respected the flag but the voice mail system did not.
Similarly, I have seen telco directories that just set a "do not publish" flag on a number but publish the entire database to other clients or customers. It is up to that consumer of the database to properly respect the setting.
For most of us this is just an annoyance. We are pissed off that we paid for something that doesn't do what we expected. For others, especially vulnerable people who are trying to distance themselves from an abuser, the lack of security can be deadly.
Unless someone is jailed (Score:2)