Computerbeveiliging - Hoe je bad guys buiten de deur houdt

Onbekend nummer

18-05-2018, 15:31 door flyingmarc, 9 reacties
Ik ben recentelijk gebeld door het nummer 0206530524 als ik dit nummer check dan bestaat het nummer niet en als ik het bel krijg je inderdaad een toon dat het nummer onjuist is. is dit weer een of andere Microsoft oplichtersbende, heeft iemand hier ervaring mee ik ga het nummer op de blocklist zetten. Kennelijk kunnen ze ermee bellen maar terugbellen kan dus niet.
Reacties (9)
18-05-2018, 15:45 door Anoniem
Er zijn blijkbaar enkele SIP providers die hun zaakjes niet op orde hebben en CID spoofing toestaan.

Kun je niet zoveel tegen doen, ze bellen nl. niet elke keer met het zelfde nummer.
18-05-2018, 15:59 door Anoniem
Kan zijn dat het hier gaat om een spoofnummer.
Onbekende nummers uit het buitenland neem ik bij voorbaat niet op, als je echt nodig hebben dan spreken ze wel een voicemail in of bellen ze je meerdere keren achter elkaar.
18-05-2018, 16:12 door Anoniem
Het nummer dat je op het display van je telefoon ziet is te vervalsen, helaas. Er zijn volce-over-ip-providers waar de klant het doorgeseinde nummer zelf in de webinterface moet configureren. Iemand die dat legitiem gebruikt kan een stom tikfoutje hebben gemaakt (ken je iemand met een telefoonnummer dat bijna hetzelfde is?). Het kan inderdaad ook een oplichtersbende zijn. Misschien moet je een keer opnemen om erachter te komen hoe het zit.
18-05-2018, 16:25 door Anoniem
Je zoekterm van de dag is "caller ID spoofing". Je kan je telco eens bellen en kijken of ze willen uitzoeken waar het belletje werkelijk vandaan kwam.
18-05-2018, 16:31 door Anoniem
Waarom bel jij terug naar zo'n raar nummer? Dacht je soms dat je misschien een miljoen euro zou gewonnen hebben?
Ik zou gewoon niet eens hebben opgenomen...
18-05-2018, 16:35 door Anoniem
Zelf even zoeken op Google ?

https://www.google.com/search?client=ubuntu&channel=fs&q=0206530524&ie=utf-8&oe=utf-8
18-05-2018, 16:47 door Anoniem
Is dit het? Ja het is scam, maar in Nederland nog niet zo bekend.

A robocall is a phone call that uses a computerized autodialer to deliver a pre-recorded message, as if from a robot. Robocalls are often associated with political and telemarketing phone campaigns, but can also be used for public-service or emergency announcements. Some robocalls use personalized audio messages to simulate an actual personal phone call.

Robocalls are made by many political parties in the United States, including but not limited to both the Republican and Democratic parties as well as unaffiliated campaigns, 527 organizations, unions, and individual citizens. Political robocalls are exempt from the United States National Do Not Call Registry.[18][19] The Telephone Consumer Protection Act of 1991 (TCPA) and Federal Communications Commission (FCC) regulations prohibit anyone (including charities, politicians and political parties) from making robocalls to cell phone numbers without the recipients' prior consent.[20] The FCC permits non-commercial robocalls to most residential (non-cellular) telephone lines.[21]

The federal Telephone Consumer Protection Act of 1991 (TCPA) regulates automated calls.[22] All robocalls, irrespective of whether they are political in nature, must do two things to be considered legal. Federal law requires all telephone calls using pre-recorded messages to identify who is initiating the calls and include a telephone number or address whereby the initiator can be reached.[23]

Some states (23 according to DMNews) have laws that regulate or prohibit political robocalls.[24] Indiana and North Dakota prohibit automated political calls.[25] In New Hampshire, political robocalls are allowed, except when the recipient is in the National Do Not Call Registry.[26] Many states require the disclosure of who paid for the call, often requiring such notice be recorded in the candidate's own voice. The patch-work of state laws regulating political robocalls has created problems for national campaigns.[27]
California

California prohibits any robocall unless there is an existing relationship.[28] The California Public Utilities Code §§ 2871 et seq. holds political campaigns to the same rules as other organizations making calls with an automatic dialing–announcing device.[28] The guidelines are:

A person must come on the line before the recording to identify the nature of the call and the organization behind it.
The recipient of the call must consent to the recording being played.
The call must be disconnected from the telephone line as soon as the message is over or the recipient hangs up, whichever comes first.

Indiana

Indiana requires introduction of any prerecorded message by a live operator; the message may only be played if the called party grants permission.[24]
Missouri

In September 2008, Missouri Attorney General Jay Nixon alerted political campaigns in Missouri that his office would aggressively enforce federal rules (Telephone Consumer Protection Act of 1991) requiring calls to include identifying and contact information.[29]
North Carolina

Robocalls were made during the 2008 North Carolina Democratic primary, targeting African-American voters in the days leading up to the primary in late April 2008,[30] which essentially told registered voters that they were not registered.[31] According to NPR[32] and Facing South,[33] these calls were made by the organization "Women's Voices Women Vote."[34] Voters and watchdog groups complained that it was a turnout-suppression effort, and the state Attorney General Roy Cooper ordered them to stop making the calls.[34] The group stopped the calls and no further legal action was taken.
South Carolina
Main article: Cahaly v. LaRosa

South Carolina had a law prohibiting most types of unsolicited consumer and political robocalls, but in 2010, campaign consultant Robert Cahaly was arrested by the South Carolina State Law Enforcement Division, being charged for making illegal robocalls to six state house districts.[35] The automated opinion polling system asked whether U.S. Speaker Nancy Pelosi should be invited to campaign with six Democratic candidates for the South Carolina Legislature.[36] Cahaly was arrested despite having a written opinion from the state attorney general stating that he had acted within the law.[37] The charges were subsequently dismissed in October 2012.[38] After the charges were dropped, Cahaly filed a suit against state officials, claiming his constitutional right to free speech had been violated. U.S. district court judge, Michelle Childs ruled that South Carolina's anti-robocall statute was a content-based restriction on speech and therefore unconstitutional.[39]
Proposed additional regulations

California Senator Dianne Feinstein (D-CA) introduced the Federal Robocall Privacy Act[40] in February 2008 at a Senate Committee on Rules and Administration hearing. The Act proposed to: 1) limit robocalls to no more than two a day by any one candidate, 2) mandate that candidates have accurate caller ID numbers displayed, 3) mandate that the disclosure of who is paying for the call occur at the start of the call, rather than at the end of the call, and 4) mandate that the time of the call occur not before 8 a.m. or after 9 p.m. The bill was read twice, and since it received no further action during the session, it did not become law.[41] Similar bills have been submitted in subsequent years without success.[42]

Shaun Dakin, CEO of Citizens for Civil Discourse, testified at the hearing and described how robocalls affect the lives of voters across the nation.[40] He also wrote an op-ed for the Washington Post calling for a Voter Privacy Bill of Rights in which all voters would have the right to opt out of political robocalls if they did not wish to receive them.[43]

Dakin, a former John Kerry campaign worker,[44] set up a website called Stoppoliticalcalls.org and claimed to allow citizens to opt out of receiving robocalls.[45][46][47][48] However, there is no guarantee that the registry will stop the calls and since there is no law that supports the database it is essentially an Internet petition. As mentioned above, the Robocall Privacy Act failed to become law and neither bill had provisions for a do-not-call registry for stopping robocalls.[41][49]

Despite heavy media publicity of the database, only seven politicians in the United States voluntarily pledged to respect the list during the 2008 general election cycle. Of those seven, only three made it to the general election and only Virginia Foxx (R) was successfully reelected in November 2008.

On September 1, 2009, a new regulation of the Federal Trade Commission went into effect, banning most robocalls without written opt-in from the receiver.[50] Political campaigns, surveys, charities, debt collectors, and health care providers are exempt, as are calls to businesses. Calls from banks, insurers, and phone companies are out of the jurisdiction of the FTC. In situations under federal jurisdiction, the federal law will supersede a slightly less restrictive law in the state of California.[51]
Reverse robocalling

In December 2011 reporting described "robocall revenge" where voters can turn the table and send robocalls to politicians and others using online website tools.[52]
Suppressing unwanted and illegal robocalls

Many robocalls are not wanted, and several methods have been developed to prevent unwanted robocalls. Many countries operate do not call lists, but the lists have been ineffective[53][54] and legally problematic in some cases.[55] Consequently, a market has developed for products that allow consumers to block robocalls. Most products use methods similar to those used to mitigate SPIT (spam over Internet telephony) and can be broadly categorised by the primary method used. However, due to the complexity of the problem, no single method is sufficiently reliable.[56]

Solutions are available as both hardware and software products. Mobile apps are especially prevalent as they use techniques which do not require the modification of infrastructure. Many products are limited to use only on a single medium, such as traditional copper landlines, or mobile phone contracts from a specific mobile phone operator.
Blacklisting and whitelisting

In its simplest form, this method offers the ability to prevent further calls from phone numbers, once they are known to be a source of robocalls. Many mobile apps can prevent robocalls with a user generated blacklist.
Landline call blocker in use

For landlines there are standalone call blockers which connect to the telephone. Various models work on blacklisting and whitelisting principles. Call blockers received attention from publications including Which? and Consumer Reports in the United Kingdom and United States respectively.[57][58]

In the UK BT operates a service for landlines called Choose to Refuse which allows customers to block up to 10 phone numbers of their choice for a monthly fee.[59]

A number of physical products have been developed which for use with landlines. These are typically installed in homes and employ a hard coded or irregularly updated blacklist. Some models also have the function to create a user generated whitelist.[60]
Crowdsourcing

A more sophisticated model uses crowdsourcing to build a more comprehensive blacklist of robocall numbers. A notable example of this is the app Truecaller, which requires users to provide access to their personal whitelist of genuine contacts in exchange for access to the larger crowdsourced database. In 2013, hackers gained access to Truecaller's database of known genuine numbers, highlighting the danger of centralising this information.[61][62]

In 2012, the Federal Trade Commission launched a competition at DEF CON, with a $50,000 prize for the winner, to help develop the best concept for tackling robocalls. The winner, NoMoRoBo, was picked from 798 entries and makes use of the simultaneous ringing function to reroute potential robocalls, based on data from other users.[63][64]
CAPTCHA

Building on the crowdsourcing model, Primus Canada launched a patented product called Telemarketing Guard for landlines in 2007.[65] It improves on previous models by including a CAPTCHA style challenge-response test.

Based on a database developed from customer feedback, it filters suspected telemarketing calls to a system which challenges callers to record their name after pressing a button. If a name is recorded, the customer's phone rings with the Caller ID of Telemarketing Guard. If they answer the phone, they are played the recording, at which point they can accept the call or decline and report it.[66]
Realtime analysis

A major problem for the use of both blacklisting and whitelisting techniques is the practice of Caller ID Spoofing,[67] which is prevalent as a result of the low barrier to entry in the VoIP services market.[68]

In 2015 the Federal Communications Commission proposed a framework for the telecommunications industry in the United States, which included a validation system at network level for robocalls from SIP sources by 2017.[69] The final authentication task in the framework is the signing of all VoIP calls, which would allow carriers to reliably identify robocalls.

Until these goals are achieved, a more advanced method for blocking robocalls uses real-time business intelligence techniques to address the constantly changing identities of robocalls. With access to a large enough data sample, it is possible to create algorithms which detect call patterns without requiring reporting by users.

In 2016, both Verizon[70] and Sprint each launched their own service based on Enhanced Caller ID, which is developed by Cequint and incorporates whitelisting, blacklisting and crowdsourcing techniques.[71] For improved accuracy, it is complemented by a technology called Call Guardian developed by TNS, which performs caller behavior analysis on the 25 billion public calls they handle every year in real time.[72]
Enforcement

In August 2016, a "Robocall Strike Force" of thirty companies said they would help crack down on the problem.[73]
2015 Federal Communications Commission Declaratory Rulings

After receiving more than 215,000 consumer complaints in 2014 alone, the U.S. Federal Communications Commission (FCC) strengthened and clarified its regulations protecting consumers from unwanted robocalls and spam emails and texts. The Commission issued a package of declaratory rulings in June 2015 that clarified the provisions of the Telephone Consumer Protection Act (TCPA) that deal with prerecorded and artificial voice calls received by residential wireline phones as well as wireless numbers.[74]
2009 Federal Trade Commission action against an illegal robocall provider

In May 2009, in response to numerous complaints, the Federal Trade Commission asked a federal court to shut down a telemarketing campaign that has been bombarding U.S. consumers with hundreds of millions of allegedly deceptive robocalls in an effort to sell them vehicle service contracts under the guise that they are extensions of original vehicle warranties.[75] The FTC took action against both the promoter of the phony extended auto warranties, as well as the telemarketing company that it hired to carry out its illegal, deceptive campaign. The FTC contends that the companies are operating a massive telemarketing scheme that uses random, pre-recorded phone calls to deceive consumers into thinking that their vehicle's warranty is about to expire. Consumers who respond to the robocalls are pressured to purchase extended service contracts for their vehicles, which the telemarketers falsely portray as an extension of the manufacturer's original warranty. According to papers the FTC filed with the court, however, the robocalls have prompted tens of thousands of complaints from consumers who are either on the United States National Do Not Call Registry or asked not to be called. Five telephone numbers associated with the defendants have generated a total of 30,000 Do Not Call complaints. Consumers received the robocalls at home, work, and on their cell phones, sometimes several times in one day. Businesses, government offices and even 911 dispatchers have been subjected to the calls.

Those who answer the pre-recorded calls hear a message telling them that their vehicle warranty is about to expire and that they should "extend coverage before it is too late." They are told to "press one" to speak to a "warranty specialist." The "specialists" then mislead consumers into believing that their company is affiliated with the dealer or manufacturer of the consumer's vehicle. They try to sell consumers a service contract for between $2,000 and $3,000, which they falsely portray as an extension of the vehicle's original warranty. The seller of extended auto warranties sued by the FTC allegedly took in more than $10 million on the sale of these deceptively marketed service contracts. In their robocalls, the companies dialed every phone number within a particular area code and prefix sequentially, without knowing whether the consumers called were motorists or owned motor vehicles, or whether those consumers' numbers were on the Do Not Call Registry. Consumers who asked that the calls be stopped often were met with "abusive behavior" or were simply hung up on, according to the papers filed with the court. Some of the defendants used offshore shell corporations to try to avoid scrutiny, and a top officer in the telemarketing company bragged to prospective clients that he could operate outside the law without any chance of being caught by the FTC, the papers stated. This defendant also claimed that he makes 1.8 million dials per day and that he had done more than $40 million worth of dialing for extended warranty companies, including one billion dials on behalf of his largest client, according to the court papers filed by the FTC. In addition to the robocalls, the FTC charged that the company selling the warranties mails out deceptive postcards to consumers, warning them about the imminent expiration of their auto warranties. The postcards are designed to mislead consumers into believing that they are being contacted by their dealer or manufacturer, and the postcards offer consumers the chance to "renew" their original warranties.[76] On May 15, 2009 U.S. District Judge John F. Grady issued the temporary restraining order against the defendants Transcontinental Warranty Inc. and Voice Touch Inc. Grady's orders also applied to Transcontinental CEO and President Christopher Cowart, Voice Touch executives James and Maureen Dunne, Voice Touch business partner Network Foundations LLC and Network Foundations executive Damian Kohlfeld. Besides ordering a halt to the automatic telephone sales calls, Grady's order froze the assets of the two companies. The FTC alleged in its complaints that the calls were part of a deceptive scheme and asked the court to assure the assets will not be lost in case they might be needed to repay consumers who have been victimized. The FTC isn't immediately seeking civil fines against the companies but may do so later, agency officials said. Attorneys general in Arkansas, Indiana and Missouri have taken similar actions over calls offering extended warranties on automobiles.[77]
18-05-2018, 16:55 door flyingmarc
Het blijkt een gespoofed nummer te zijn slechte zaak dat KPN dit toelaat. Dank voor alle reacties.


Door Anoniem: Het nummer dat je op het display van je telefoon ziet is te vervalsen, helaas. Er zijn volce-over-ip-providers waar de klant het doorgeseinde nummer zelf in de webinterface moet configureren. Iemand die dat legitiem gebruikt kan een stom tikfoutje hebben gemaakt (ken je iemand met een telefoonnummer dat bijna hetzelfde is?). Het kan inderdaad ook een oplichtersbende zijn. Misschien moet je een keer opnemen om erachter te komen hoe het zit.
18-05-2018, 18:16 door Anoniem
KPN heeft er niets mee te maken. De andere provider staat caller-id spoofing toe.

Je kan bij je provider een klacht indienen. Dan kunnen ze misschien de routing/etc achterhalen (bij calls wordt meer opgeslagen dan alleen het caller-id).
Reageren

Deze posting is gelocked. Reageren is niet meer mogelijk.