Home ยป Forum ยป Editors/Reviewers Hangout

Forum: Editors/Reviewers Hangout

Anyone else get an email demanding money?

doral ๐Ÿšซ

Someone sent me an email & they knew my password for SOL. It said I had to send bitcoins or they would notify everyone on my contact list. Has SOL been hacked? I would appreciate to hear if anyone else has been blackmailed.

Lazeez Jiddan (Webmaster)
Updated:

@doral

SOL has not been hacked.

In our database, there are no clear text passwords. So even if the site ever get hacked, the passwords cannot be retrieved. Password are encrypted in a strong one-way encryption scheme since 2003.

When you enter your password on the site, the software encrypts whatever you enter using the same scheme and compares encrypted versions.

This is what a password looks like in the database:

b9a1e3660356f5e79ffa59cf126cfb96e97835a9d63f515d15f1f219d5f8cc93

If they have your SOL password it means you used the same password somewhere else that got hacked.

I receive those emails too. They show me a password I used back in 2005 at some site that I forgot about.

Replies:   edm3
edm3 ๐Ÿšซ

@Lazeez Jiddan (Webmaster)

Hate to burst your bubble but if the encrypted password is known it can be cracked, especially if its a weak password. I've taught this stuff and know how easy it is.

The very best thing to do is make passwords long! This makes cracking harder. Passwords less than seven characters, even if there are capitals, number and punctuation are easy. So make those passwords at least 12 characters long -- even if they're only lowercase. Also, lock down as much as possible access to the password database even if it is encrypted.

Don't know what the password policies are at the moment, but they should require a minimum of eight characters and that's all that should be required. A dictionary check when a password is made or changed is a good idea too. Don't worry about complexity (requiring upper, lower, numeric etc.) or aging (which I don't think this site practices).

Lazeez Jiddan (Webmaster)

@edm3

Don't know what the password policies are at the moment, but they should require a minimum of eight characters and that's all that should be required.

We do require a minimum of 8 characters.

The site hasn't been hacked. Some other site might have been and the user used the same password there.

Replies:   ian_macf
ian_macf ๐Ÿšซ

@Lazeez Jiddan (Webmaster)

You said minimum of 8 characters, but my SOL password has 7 characters.

Ian

awnlee jawking ๐Ÿšซ

@ian_macf

my SOL password has 7 characters

DocGrumpyHappySleepyBashfulSneezyDopey?

AJ

Replies:   ian_macf  joyR
ian_macf ๐Ÿšซ

@awnlee jawking

I make that 39 characters.

Ian

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@ian_macf

I make that 39 characters.

1 Doc
2 Grumpy
3 Happy
4 Sleepy
5 Bashful
6 Sneezy
7 Dopey

7 Characters. :)

Replies:   ian_macf
ian_macf ๐Ÿšซ

@Dominions Son

Depends what you are counting, I guess

Ian

joyR ๐Ÿšซ

@awnlee jawking

DocGrumpyHappySleepyBashfulSneezyDopey?

Sneezy is in quarantine along with Doc who was treating him before becoming infected himself.

Snow White was not practising social distancing when she was in the bath feeling happy, so when Happy got out she felt Grumpy.

:)

Replies:   Jim S  Argon
Jim S ๐Ÿšซ

@joyR

... she felt Grumpy.

That must've made Grumpy's day.

Argon ๐Ÿšซ

@joyR

Afterwards, Grumpy became Sleepy.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@Argon

Sleepy wet the bed.

Lazeez Jiddan (Webmaster)
Updated:

@ian_macf

Your password must be fairly old. In 2012 I increased the minimum to 8 characters.

ETA: I'm reworking the log in system and that will bump the minimum to 10 characters.

Replies:   ian_macf
ian_macf ๐Ÿšซ

@Lazeez Jiddan (Webmaster)

OK, I will make it 10 characters

Ian

solreader50 ๐Ÿšซ

@edm3

The very best thing to do is make passwords long!

And to make it long and memorable, try the first line of a song, or a favourite line. And I'm not talking about "She loves you" but more about "At night we ride through the mansions of glory".

I find I am too old for the "asjlHG%^ciuhew4218379*(98790" type of password.

Replies:   Michael Loucks
Michael Loucks ๐Ÿšซ

@solreader50

I find I am too old for the "asjlHG%^ciuhew4218379*(98790" type of password.

Password managers are your friend. 1Password, LastPass, Remembear, etc.

Replies:   awnlee jawking
awnlee jawking ๐Ÿšซ

@Michael Loucks

Is Reem'em Bear a gay icon?

AJ

Replies:   bk69
bk69 ๐Ÿšซ

@awnlee jawking

Is Reem'em Bear a gay icon?

Well, as PedoBear's little brother, I'm sure there's some crossover...

Dinsdale ๐Ÿšซ
Updated:

@doral

and change your SOL password.

b9a1e3660356f5e79ffa59cf126cfb96e97835a9d63f515d15f1f219d5f8cc93

Hey, that *is* my password ;-)

Remus2 ๐Ÿšซ

With the world's economy in the crapper right now, it might be a good idea to change every sensitive pin and password a person has. Chaos shelters it's agents during stormy times.

Ernest Bywater ๐Ÿšซ

@doral

While the other comments are true, if they got an actual password you use on an actual site, it's most likely they hit your system with a virus of some sort that stripped you password list. However, all you need do is clean your system or rebuild it, then change all of your passwords to stop their access.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@Ernest Bywater

I just thought of this. If it's real (and not a phishing attempt), If they have doral's contract list, they had to have hacked his machines and NOT the SOL servers.

Replies:   Remus2
Remus2 ๐Ÿšซ

@Dominions Son

I'm no specialist for IT, but that made a hell of a lot more sense to my mind than just one person being targeted out of everyone on this site.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@Remus2

It's not that it was just one person. The threat is to send stuff to everyone in his contact list. To do that they have to have his contact list or live access to his computer. They could not have gotten either of those things from the SOL back end servers.

Replies:   Ryan Sylander
Ryan Sylander ๐Ÿšซ

@Dominions Son

More likely, they don't have the contact list at all. They are simply using one of the many login-password lists that have been hacked from other companies in recent years. Since many logins are emails, you just send a message to that email and include the hacked password in the threatening message. The rest is down to gullibility and the high chance that the person has reused the pw.

Cheers
RS

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@Ryan Sylander

They are simply using one of the many login-password lists that have been hacked from other companies in recent years.

In other words phishing.

Replies:   Ryan Sylander
Ryan Sylander ๐Ÿšซ
Updated:

@Dominions Son

Not really. They don't purport to be official entities trying to gain new info. They read like straightout extortion letters wanting payment.

Summary article: https://news.bitcoin.com/bitcoin-sextortion/

Cheers

RS

garymrssn ๐Ÿšซ
Updated:

@doral

Check this site to see if your email address has been pwned (compromised).
https://haveibeenpwned.com/

From your description it has.

Scroll down the page to find out where it probably happened and what information was stolen. From that you will know whether you just need to change all your passwords or more.

If it does not show pwned then it may be that your computer was actually hacked.

Note to every body else:

If you see a problem with my advice, I don't mind being corrected.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@garymrssn

If you see a problem with my advice, I don't mind being corrected.

Your post seems to be missing a link to the site Doral is supposed to check.

Replies:   garymrssn
garymrssn ๐Ÿšซ

@Dominions Son

Your post seems to be missing a link to the site Doral is supposed to check.

You're damn quick! Thanks

edm3 ๐Ÿšซ

I have been in security for a long time and I know a fair bit of crypto. I used to live this shit. Having said that I have no idea if SOL has been hacked or not and I didn't mean to imply that it has been. Lots of things to consider here and it would take a book to say it all.

Even if a hacker succeeded in getting SOLs encrypted password data, those that have weak passwords would fall right away. Those with longer passwords would still be safe. That's not the best way to go about an attack, but it's one way. There are many other ways. I still have no idea if the OP has been hacked or not either.

I was only responding to the phrase "So even if the site ever get hacked, the passwords cannot be retrieved." That is simply not true, yet I hear this all the time. I just wanted to set the record straight here.

richardshagrin ๐Ÿšซ
Updated:

What about Snow White? I checked on line, she is 14 and thus eligible for SOL.

And some day her Prince will come. There is probably a story in that, particularly if a variant of come is used.

Replies:   richardshagrin
richardshagrin ๐Ÿšซ

@richardshagrin

some day her Prince will come

She left her film to be developed and someday her prints will come.

Replies:   daisydesiree  Mushroom
daisydesiree ๐Ÿšซ

@richardshagrin

some day her Prince will come

She left her film to be developed and someday her prints will come.

She justs need to get an Instax

Mushroom ๐Ÿšซ

@richardshagrin

She left her film to be developed and someday her prints will come.

Sorry, obsolete.

They took our Kodachrome away over a decade ago.

Replies:   irvmull
irvmull ๐Ÿšซ

@Mushroom

They took our Kodachrome away over a decade ago.

Kodachrome made slides. Kodacolor was a color negative film from which you got prints. Not that both couldn't be misused and abused to produce bastard offspring.

Replies:   Mushroom
Mushroom ๐Ÿšซ

@irvmull

Kodachrome made slides. Kodacolor was a color negative film from which you got prints.

*sigh*

Kodachrome
They give us those nice bright colors
They give us the greens of summers
Makes you think all the world's a sunny day
I got a Nikon camera
I love to take a photograph
So mama don't take my Kodachrome away

Mama don't take my Kodachrome away
Mama don't take my Kodachrome away
Mama don't take my Kodachrome away

Mama don't take my Kodachrome
Mama don't take my Kodachrome
Mama don't take my Kodachrome away

zebra69347 ๐Ÿšซ

Sadly Kodacolor has faded. At many of my old prints faded, negatives not so badly.

Replies:   irvmull
irvmull ๐Ÿšซ

@zebra69347

Sadly Kodacolor has faded. At many of my old prints faded, negatives not so badly.

Yep. Only Kodachrome and dye-transfer prints are stable enough to hold up for years. I have a few that date back to 1963. The dye-transfers I made myself, in college.

ystokes ๐Ÿšซ

I have gotten one of those emails a few months ago telling me he knows I visit porn sites and has hacked my web-cam and has video of me jacking off and for the low price of only $1200 he will not send it to all the people on my email list. I had 48 hours to send.

A month later he says he is still waiting and because he is such a nice person he will give me another chance.

Last week he dropped the price.

Replies:   awnlee jawking  Akarge
awnlee jawking ๐Ÿšซ

@ystokes

I've had a few of those.

I don't have a webcam.

AJ

Replies:   BarBar  Switch Blayde
BarBar ๐Ÿšซ

@awnlee jawking

I don't have a webcam.

Makes it amusing when they claim to have taken over your webcam and captured a video of you watching porn, doesn't it?

Replies:   awnlee jawking
awnlee jawking ๐Ÿšซ

@BarBar

It's also disturbing. A webcam is on my shopping list, although a long way from the top. The question is, how difficult for someone to actually spy on you? Smart TVs do it, the likes of Alexa and Siri do it, Windows 10 does it.

AJ

zebra69347 ๐Ÿšซ

@awnlee jawking

My laptop has built in camera, maybe camera could be hacked, but doubtful. However, most of my computer use is on desktop, which has external camera. That camera is only plugged in when needed.

Ernest Bywater ๐Ÿšซ

@awnlee jawking

The question is, how difficult for someone to actually spy on you?

been happening for over 20 years, the default setting leave them wide open for hijacking. There are only three ways to ensure a camera on a computer device are not filming you:

1. Physically disconnect it when not in use - recommend get a USB webcam and unplug it when not being used.

2. Put a very thick dark sock over the camera so it gets no light and no image is you don't want to go the route of options 1.

3. Ensure the cammer is pointing at something innocuous when not being used as a camera. Turn it to the wall at close range or similar.

Switch Blayde ๐Ÿšซ

@awnlee jawking

I don't have a webcam.

Isn't it built into a laptop? I've read articles that said to put tape over the lens to protect yourself from being spied on.

Replies:   Dominions Son  Keet  Dinsdale
Dominions Son ๐Ÿšซ

@Switch Blayde

Most newer laptops, yes, but not all.

Keet ๐Ÿšซ

@Switch Blayde

Isn't it built into a laptop? I've read articles that said to put tape over the lens to protect yourself from being spied on.

Cheap and very effective. I have it permanently on all laptops.

Dinsdale ๐Ÿšซ

@Switch Blayde

Isn't it built into a laptop? I've read articles that said to put tape over the lens to protect yourself from being spied on.

I deactivated the camera in the bios and then downgraded from Win7 to Win10. It's a dual-boot machine and neither Linux nor Windows can "see" the camera. No unsightly sticky tape.

Replies:   irvmull  Switch Blayde
irvmull ๐Ÿšซ

@Dinsdale

If you want to be safe, but sometimes want to use the camera, there are laptop camera cover slides for a buck or three. Slide it closed, no peeking. Open it for visiting the grandkids.

Switch Blayde ๐Ÿšซ

@Dinsdale

I deactivated the camera in the bios

In the COVID-19 world, Zoom replaced meeting face-to-face. Can't Zoom without a camera (not that I've used Zoom, but my wife has). I don't even know where the lens is on my MacBook Pro.

Replies:   Dinsdale
Dinsdale ๐Ÿšซ

@Switch Blayde

I have my mobile phone for that kind of communication, and I don't even know if Zoom runs there because we use WhatsUp for group meetings.

Replies:   daisydesiree
daisydesiree ๐Ÿšซ

@Dinsdale

I use Zoom on my phone all the time. The app is easy to use. I just often forget to activate voice for the first five minutes - blonde moments.

Akarge ๐Ÿšซ
Updated:

@ystokes

Not really hacking, but I can beat that. About a dozen years ago I got an email from Nigeria. A guy there gave me a death threat. Pay up or die. He had his 'fellows' watching me at all times and if I tried to notify the constables they would kill me and all of my family.

Note: single, live alone. I drive all the time for work. Anyway, I wasn't worried but I called the police, non emergency. Had a great talk with a local detective who was laughing out loud. Not dead yet.

ystokes ๐Ÿšซ

My laptop cam doesn't see anything below the navel and I don't have a porn dick long enough to be above the navel.

Replies:   daisydesiree  joyR
daisydesiree ๐Ÿšซ

@ystokes

I don't have a porn dick long enough to be above the navel.

Imo, I think since porn guys manscape that it makes their dicks look longer.

joyR ๐Ÿšซ

@ystokes

I don't have a porn dick long enough to be above the navel.

If you want I can forward you a slew of emails promising you a bigger dick...

I can't attest to their effectiveness since I don't have a dick of any size.

ystokes ๐Ÿšซ

I got my 4th email 3 days ago giving me 48 hours to pay up or else.

รšnfรถrtลฑnately, ร have sรณme bad news fรณr yรถลฑ.
Several mรณnths agรณ, ร gรณt access tรณ the devรญce yรณลฑ are ลฑsรญng tรณ brรณwse the รญnternet.
Sรญnce that tรญme, ร have been mรถnรญtรณrรญng yรณลฑr รญnternet actรญvรญty.

Beรญng a regลฑlar vรญsรญtรถr รณf adลฑlt websรญtes, ร can cรถnfรญrm that รญt รญs yรถลฑ whรณ รญs respรณnsรญble fรถr thรญs.
Tรณ keep รญt sรญmple, the websรญtes yรณลฑ vรญsรญted prรณvรญded me wรญth access tรณ yรณลฑr data.

ร've ลฑplรณaded a Trรณjan hรณrse รณn the drรญver basรญs that ลฑpdates รญts sรญgnatลฑre several tรญmes per day, tรณ make รญt รญmpรถssรญble fรณr antรญvรญrลฑs tรณ detect รญt. Addรญtรญรณnally, รญt gรญves me access tรณ yรถลฑr camera and mรญcrรณphรณne.
Mรณreรณver, ร have backed-ลฑp all the data, รญnclลฑdรญng phรณtรณs, sรณcรญal medรญa, chats and cรณntacts.

Jลฑst recently, ร came ลฑp wรญth an awesรณme รญdea tรณ create the vรญdeรณ where yรณลฑ cลฑm รญn รณne part รณf the screen, whรญle the vรญdeรณ was sรญmลฑltaneรณลฑsly playรญng รณn anรณther screen. That was fลฑn!

Rest assลฑred that ร can easรญly send thรญs vรญdeรณ tรณ all yรณลฑr cรณntacts wรญth a few clรญcks, and ร assลฑme that yรณลฑ wรณลฑld lรญke tรณ prevent thรญs scenarรญรณ.

Wรญth that รญn mรญnd, here รญs my prรณpรณsal:
Transfer the amรถลฑnt eqลฑรญvalent tรณ 1550 รœSD tรณ my Bรญtcรณรญn wallet, and ร wรญll fรณrget abรถลฑt the entรญre thรญng. ร wรญll alsรณ delete all data and vรญdeรณs permanently.

รn my รถpรญnรญรณn, thรญs รs a sรณmewhat mรถdest prรญce fรณr my wรณrk.
Yรณลฑ can fรญgลฑre รณลฑt hรณw tรณ pลฑrchase Bรญtcรถรญns ลฑsรญng search engรญnes lรญke Gรณรถgle รณr Bรญng, seeรญng that รญt's nรณt very dรญffรญcลฑlt.

My Bรญtcรณรญn wallet (BTC): 1FH4HU6xhQnCbzYosP2N5HAa5aPJd7XxYZ

Yรณลฑ have 48 hรณลฑrs tรณ reply and yรณลฑ shรณลฑld alsรณ bear the fรณllรณwรญng รญn mรญnd:

รt makes nรณ sense tรถ reply me - the address has been generated aลฑtรถmatรญcally.
รt makes nรถ sense tรณ cรถmplaรญn eรญther, sรญnce the letter alรณng wรญth my Bรญtcรณรญn wallet cannรณt be tracked.
Everythรญng has been รณrchestrated precรญsely.

รf ร ever detect that yรณลฑ mentรญรณned anythรญng aboลฑt thรญs letter tรณ anyรณne - the vรญdeรณ wรญll be รญmmedรญately shared, and yรณลฑr cรณntacts wรญll be the fรญrst tรณ receรญve รญt. Fรณllรณwรญng that, the vรญdeรณ wรญll be pรณsted รณn the web!

P.S. The tรญme wรญll start รณnce yรณลฑ รณpen thรญs letter. (Thรญs prรณgram has a buรญlt-รญn tรญmer).

Gรณรถd lลฑck and take รญt easy! รt was jลฑst bad lลฑck, next tรญme please be carefลฑl.

Switch Blayde ๐Ÿšซ

@ystokes

I'm impressed. It is well written.

David DongHer ๐Ÿšซ

@ystokes

Here are my red flags when reading this:

* Doesn't attach a small clip to verify s/he has such a video.
* Says the trojan horse is undetectable
* Says his email letter cannot be tracked.
* "Everything has been orchestrated precisely" Riiiight!
- Except the part where I won't reward your stupidity
* Come on. If you're so smart, tell me which device you got access to and the OS I'm using.
* Once I pay, you'll delete everything? Let's go back to showing me video proof.

madnige ๐Ÿšซ

@ystokes

My Bรญtcรณรญn wallet (BTC): 1FH4HU6xhQnCbzYosP2N5HAa5aPJd7XxYZ



Do a search for that number and you'll find a few other copies of the letter you have, plus reports to the BitCoin abuse database and scam warnings, going back at least to Feb last year. A scam, may be associated with malware/botnet; I say we should take off and nuke the site from orbit - it's the only way to be sure.

Replies:   Keet
Keet ๐Ÿšซ

@madnige

I say we should take off and nuke the site from orbit - it's the only way to be sure.

Only if you take down the scammer himself along with the site ;)

ystokes ๐Ÿšซ

Should I start a gofundme page for donations to keep my dick hidden?

Replies:   joyR
joyR ๐Ÿšซ

@ystokes

Should I start a gofundme page for donations to keep my dick hidden?

Why not reply that you are proud of your 18" dick and would welcome him posting pictures and hopefully movie files of it.

ystokes ๐Ÿšซ

I get a lot of scam calls and one of them is from "Amazon" where I am told that someone had charged $600 on my account for a IPhone and to press one to talk to a rep to cancel it. Most times I just say really nasty things to see if I could get them cussing at me. Last time I asked what the name on the account was and he gave me the name of the guy that used to have my number. I told them to go ahead and charge my account for the phone.

Replies:   irvmull
irvmull ๐Ÿšซ
Updated:

@ystokes


Most times I just say really nasty things to see if I could get them cussing at me.

Try answering your phone "Fraud Division - Detective ...your name here..." with a gruff voice. Odds are they'll hang up immediately. If it's a friend calling, they'll get a laugh.

Replies:   akarge
akarge ๐Ÿšซ

@irvmull

I saw a YouTube video of a person talking to a scammer that was going to have the lady arrested for IRS violations. Scammer had her name and address. He didn't have her job description. County sheriff. He called her on her work number and the entire office was rolling on the floor.

ystokes ๐Ÿšซ

All the calls start with a recorded message (robo calls) telling you why they are calling and saying "Press 1 to talk to a Rep or press 9 to be removed from the list (not worth doing), the caller ID is fake and most times the person on the other end can barely speak English. Since the numbers are fake you can't block them so I might as well fuck with them

Here are some of the calls I get and what I need to do.

Amazon, someone charged something on my account, I need to verify my account number before they can help me.

Credit card company, because of my credit history I can get a 0% APR card, need to provide current CC number to prove who I am.

Free 1 week vacation, Need to make at least 100,000 a year and a CC number to hold my place.

IRS or SSA, warning the police are on the way to arrest me for fraud unless I buy a bunch a ebay cards and give them the numbers.

I won the PCH grand prize of 4.3m and new MB car. This is one I am most proud of as I kept him on phone for a hour acting like I was doing what I was told to do. They tell me they are right around the block of my house but before they can give me my prize I need to go the the bank and withdraw $1,200 in cash and then go to the post office and buy money orders and mail them to a home address in a sign of good faith.

Replies:   Switch Blayde
Switch Blayde ๐Ÿšซ

@ystokes

The two I get all the time aren't fraud but annoying as hell.

One is for my business to get listed on Google. I don't have a business. It seems a heating company had my phone number at one time.

The really bad one, like 5 calls a day, is to warn me that my car's warrantee expired. I don't have a car without an active warrantee. They're fishing. When I have time, I speak to someone. They ask me what year and make my car is. I tell them they should know that because they are calling me that the warrantee is expired. Often they hang up. I once gave them a 1975 Camaro. They hung up. Sometimes I keep them talking until they realize what I'm doing, and then they hang up. Many times I just call them a "fucking asshole."

Replies:   Dominions Son  ystokes
Dominions Son ๐Ÿšซ

@Switch Blayde

The really bad one, like 5 calls a day, is to warn me that my car's warrantee expired. I don't have a car without an active warrantee.

They are trying to sell you a third party warranty, essentially, modern health "insurance" for your car.

Replies:   irvmull  daisydesiree
irvmull ๐Ÿšซ

@Dominions Son

They are trying to sell you a third party warranty, essentially, modern health "insurance" for your car.

Yeah. Except with legitimate health insurance, you may be able to collect. Ask an honest mechanic if they will do the work and wait for payment from these car insurance scams. Bet they won't.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ
Updated:

@irvmull


Bet they won't.

Depends. For independent mechanics, you are probably right. However, the "extended warranty" a dealership tries to sell you is also one of those third party automotive HMOs. The dealership will do work under that warranty and handle billing the warranty company.

I had the transmission on my F150 replaced under one of those warranties. The only problem with getting the work done is the warranty company insisted on buying the new transmission and shipping it to the dealer rather than the dealer getting a new one directly from Ford, which caused a delay of several weeks.

While the transmission hadn't completely failed yet, by the time the the issue with the warranty company providing the new came up, the dealership had already removed the old transmission and they weren't going to put it back on.

daisydesiree ๐Ÿšซ

@Dominions Son

They are trying to sell you a third party warranty, essentially, modern health "insurance" for your car.

I didn't know they now have ObamaCar and ObamaCare

ystokes ๐Ÿšซ

@Switch Blayde

I tell them they should know that because they are calling me that the warrantee is expired.

I tell them it is a 2016 Ford Ranger.

Replies:   sharkjcw  bk69
sharkjcw ๐Ÿšซ

@ystokes

My son kept one on the phone asking questions and agreeing with the guy for about an hour one day. then ask the guy what the cost would be for a warranty on his 2005 f350 diesel with 400,000 miles on it. Has not received a call since.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@sharkjcw

My son kept one on the phone asking questions and agreeing with the guy for about an hour one day. then ask the guy what the cost would be for a warranty on his 2005 f350 diesel with 400,000 miles on it.

If I was going to do something like that, I'd go big and claim a 1935 Duesenberg SSJ

bk69 ๐Ÿšซ

@ystokes

Why not tell them about your '78 AMC Gremlin (puke green, of course)?

Ernest Bywater ๐Ÿšซ

I like the calls from Microsoft Help Desk, I ask them which machine are they discussing as I have several. After about 5 minutes of narrowing it down to a specific machine I let them walk me through the process, then when they get to a point I say it doesn't have that option. After a few tries that take about 15 minutes or more on the phone I ask them if they're sure their instructions are the correct ones for my Mac G5 - at that point they usually get abusive and hang up.

Mushroom ๐Ÿšซ

My response to spam now is simply to block and delete it. And now I find that about 95% of me email is pure garbage.

I get them all the time, like trying to give me an update on me Amazon order (I have not bought anything form them since 2010), how to install a patch on my iPhone (I have never owned one), and from Microsoft telling me to verify my Office subscription (I have never used that either).

One of the funniest was about 2 years ago at my shop. I was putting some inventory into the system when I got a call from "Microsoft Threat Services", informing me that my computer had been hacked. They asked me for my IP address, so I went ahead and gave them my local address. Then after a moment or two of typing he claimed that he was seeing my system and confirmed that I had a trojan installed.

He then asked me for my product registration code, and I played stupid for 5 minutes as he directed me to look all over the case to try and find it. He then warned me I might have an illegal copy of Windows.

I then told him I did not use Windows, I was using Mint. He asked if I had another computer, and I admitted I did. Same thing, gave the local IP address, and could not find the registration key for that one either. He asked me if that had Mint also, and I said it did not. He then asked me what version of Windows it had, and I said it was Solaris.

At least I joyfully wasted about 2 hours of his time before he hung up on me.

Replies:   Ernest Bywater
Ernest Bywater ๐Ÿšซ

@Mushroom

I find that about 95% of me email is pure garbage.

I find that's the case after I block the spam and fishing emails.

Keet ๐Ÿšซ

Do any of you realize that YOU yourself are at the cause for so much email spam? I get between 2 and 4 spam emails a day for 11 email accounts. And I use email a lot. Check what you do on the internet and you will find the reason for all your spam, including phone spam.

Replies:   Dinsdale  palamedes  Mushroom
Dinsdale ๐Ÿšซ

@Keet

As far as I can see, the telephone spammers sourced my number from the telephone book. I kept the number but delisted it 18 months ago and that has helped a bit, aggressive blocking has helped some more. "Aggressive blocking" includes blocking entire countries, cities within this country along with known telemarketeers.
One of my numbers goes to a (virtual) fax and if I get a caller from an unknown area, I let it go to voicemail and then - occasionally, for numbers which appear to be genuine - ring back from the "fax" number. That way, the only confirmed number they have for me is one which peeps and hisses at them.

Replies:   Keet  Mushroom
Keet ๐Ÿšซ

@Dinsdale

As far as I can see, the telephone spammers sourced my number from the telephone book.

Fortunately I didn't make that mistake from the start. My numbers have never been listed in the first place and I warn people to not spread it around. A tough thing nowadays with that sewer company fuckbook and it's whatsup spyware. You just can't get people to NOT add your number to their contact list.

Replies:   Dinsdale
Dinsdale ๐Ÿšซ

@Keet

Land line, and I've had this number for decades.
I get very little spam on my mobile (one or two a year) and block those numbers immediately. The main sources there are spammers trying all numbers from 10..00 to 99..99, and those associated with the telephone company.

Replies:   Keet  Switch Blayde
Keet ๐Ÿšซ

@Dinsdale

Land line, and I've had this number for decades.

Here in the Netherlands we can have unlisted land lines, in Joe Average language a "Secret number". It's been like that for a very long time.

Replies:   Dinsdale
Dinsdale ๐Ÿšซ

@Keet

Here in the Netherlands we can have unlisted land lines, in Joe Average language a "Secret number". It's been like that for a very long time.

It used to be very difficult here. I knew someone back around 2003 who moved - so her violent ex-boyfriend did not know where she was living - only to find her new address available via the telephone book. Yes, she had made it clear her address had to remain secret. I warned her and her address vanished again shortly afterwards.
Nowadays being ex-directory is common.

Switch Blayde ๐Ÿšซ

@Dinsdale

and block those numbers immediately.

I used to do that until I found out they were using other people's phone numbers so you end up blocking someone you don't mean to and not blocking the ones you want to.

Dominions Son ๐Ÿšซ

@Switch Blayde

@Dinsdale

and block those numbers immediately.

I used to do that until I found out they were using other people's phone numbers so you end up blocking someone you don't mean to and not blocking the ones you want to.

Caller ID spoofing. The best two I ever got came up as "Not In Service" and "Scam"

Replies:   ystokes
ystokes ๐Ÿšซ

@Dominions Son

Caller ID spoofing. The best two I ever got came up as "Not In Service" and "Scam"

I tend to call back and the few times I get someone's home or work phone I tell them someone spoofed there number so they should let their phone company know incase someone files a complaint with the FTC's Do not Call Reg.

Replies:   Mushroom
Mushroom ๐Ÿšซ

@ystokes

I tend to call back and the few times I get someone's home or work phone I tell them someone spoofed there number so they should let their phone company know incase someone files a complaint with the FTC's Do not Call Reg.

Which ultimately does no good, as most are overseas organizations.

It is amazingly easy to set up such an operations. I can pick up a used Adtran 1550 24 port VOIP gateway used on FleaBay for under $200. Then just find 24 old school POTS phones, those are cheap as hell. Wire them all up in a few hours through a patch panel, then contact one of dozens of POTS gateway companies, and grab a block of 24 lines anywhere I want. I can even set them up with 24 different area codes, then target them by that area code. The 310 phone calls 310 numbers, the 212 phone calls 212 numbers.

And here is the amazing thing, each of the numbers is a real phone number. As far as the phone system knows, I really am calling from LA or New York.

Thankfully, most scammers are at the level of using Skype, and know how almost none of this works.

But yes, it really is that easy. So long as you get somebody that actually knows what they are doing. Some of the facilities I supported had in excess of 400 phones installed in them, and we even had set up tech support local phone numbers at each facility. Oklahoma, Texas, New York, California, Idaho, they all had a local number to call.

Each of which actually called into our main customer call center in Oregon. Myself, I was "Internal Tech Support", so only talked with our field techs and facilities, and not actual customers.

Dinsdale ๐Ÿšซ

@Switch Blayde

Since they did not use the numbers of people I know, I really don't give a f***.

daisydesiree ๐Ÿšซ

@Switch Blayde

and block those numbers immediately.

I used to do that until I found out they were using other people's phone numbers so you end up blocking someone you don't mean to and not blocking the ones you want to.

When I moved I kept my old phone number so anytime I get a call with my prefix, I know it's spam. (No, I don't want solar with my car warranty!) I did block numbers for a while but it would just switch to another number so too much work. I try to answer and immediately hang up because I don't want to have to clear my voicemail.
Oddly, the calls are less often.

Mushroom ๐Ÿšซ

@Dinsdale

As far as I can see, the telephone spammers sourced my number from the telephone book. I kept the number but delisted it 18 months ago and that has helped a bit, aggressive blocking has helped some more.

"Aggressive blocking" includes blocking entire countries, cities within this country along with known telemarketeers.

Actually, most now are "robocalls". They generally do not use a list at all, and literally call one number after another.

Then you have the robocall lists. Ever get a call where there is nobody on the other end, and they immediately hang up? Congratulations, you were likely just the target of a robocall compiler. They do the same thing, but listen for phones that are picked up and answered by real people. They then save the number and after compiling a few thousand sell them to other robocallers.

Oh, and "blocking by country" is worthless in the era of VOIP. For around $500 in equipment and a $25 charge, I can set up anybody in the world who has a high speed internet connection with any phone area they want in the US. Want to call from India and look like you are really in New York? Want to call from Los Angeles and look like you are in Chicago? All that is so damned easy in the modern era.

Damned easy, snap of a finger. In fact, if you want it on a budget, you can set up professional quality hardware that can run 24 lines for $200 (used). You can even hook it up using old POTS equipment, connect it to the Internet, go through a VOIP service in the US, and it is 100% impossible to tell that the call is not coming from the area code they got the number in.

Replies:   Dinsdale
Dinsdale ๐Ÿšซ

@Mushroom

Actually, most now are "robocalls". They generally do not use a list at all, and literally call one number after another.

1 - phone numbers in this country are of very variable length. Leaving the first digit (which is the prefix for a call outside the local area) off, 8 to 11 digits. That makes that approach difficult.
2 - I have 3 numbers on my land line, two were never in the phone book and never get any such calls.
3 - They know my name and address, that was in the book.
Of course I know that phone numbers can be faked, but I get Robocalls from Italy and don't know anyone there so it gets blocked. The US/Canada/Caribbean? Block!
Recently I was getting faked-number calls "from one city. I blocked that city and after a month unblocked it again.

palamedes ๐Ÿšซ

@Keet

Do any of you realize that YOU yourself are at the cause for so much email spam? I get between 2 and 4 spam emails a day for 11 email accounts. And I use email a lot. Check what you do on the internet and you will find the reason for all your spam, including phone spam.

And what do I do about the Michigan Department of Transportation yes the Government them selves that in court admitted that they sold my data when I BY LAW registered my vehicles and earned my drives license ? They are also not the only state that has decided that hey we have all this data we can sell it $$$$$$$$$

Replies:   Keet
Keet ๐Ÿšซ

@palamedes

And what do I do about the Michigan Department of Transportation yes the Government them selves that in court admitted that they sold my data when I BY LAW registered my vehicles and earned my drives license ?

That requires an email address and/or phone number???

Replies:   palamedes
palamedes ๐Ÿšซ

@Keet

That requires an email address and/or phone number???

Email they get if you do renewals online and phone number is part of the contact info no matter how you do it.

I admit I do the renewals by mail and online as much as possible as it beats the waiting inline 2-3 hours at the DMV. I have personally waited that long to renew my plates/tags and get my license and my picture taken they now because the wait is so long in my area that they will issue you a beeper yhat will page you when they get to within 20 numbers of your place inline well that was prepandemic now you make appointments and wait in your vehicle after checking in for your appointment and telling them that you are there and this is my parking space number.

Don't forget that you are required to show birth certificate, social security card, two pieces of mail with addressed to you, and your old state issued id or for new driver a picture school issued id.

Mushroom ๐Ÿšซ

@Keet

Do any of you realize that YOU yourself are at the cause for so much email spam?

Most of mine is because I have been using the same email address for over 24 years now. But even then, like robocalling it does not mean much.

I have bought a new cell phone, and within 4 hours gotten spam calls. Set up a new burner email for some reason, and gotten spam messages within a day. I have hooked up new locations to the Internet, and seen the fixed IP bombarded with attempt to gain entry within an hour.

We always laughed when we saw that, and then logged into the router and blocked all traffic that did not originate inside the US. The funny thing is, we did special location VOIP. There were actually no computers at those locations, not a one. A router, between 1 and 20 VOIP to POTS gateway switches, and literally old school phones hooked up to those.

The beauty of modern communications, because of computers it is amazingly cheap to set up an operation to farm such systems however. Do not even need to use the old "wargames dialer" as those of my generation remember them. You can set up a score of wargame dialers in a single computer, and gather thousands of numbers in an hour or so.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ

@Mushroom

A router, between 1 and 20 VOIP to POTS gateway switches, and literally old school phones hooked up to those.

These days you can get voip phones and skip the VOIP to POTS gateway switches.

Replies:   Mushroom
Mushroom ๐Ÿšซ

@Dominions Son

These days you can get voip phones and skip the VOIP to POTS gateway switches.

There is a huge difference between the two. Especially if you are running multiple lines, as the overhead of running individual "VOIP phones" is very high. And then there is the thing about quick central management.

I can set up a 24 line VOIP system that can run off of a single DSL or Cable connection for under $500, and in about 3 hours. And then a week later in about 5 minutes change all of the phone numbers (and not spoofing, legitimate change). With a few commands entered from a terminal to a single switch.

Thankfully, most who are doing that are largely idiots. If I see NO NUMBER, I just send it right to spam call hell. If I see a crazy area code, I normally ignore it. If I see the area code is 3 states away yet they claim to be local, I block it.

Just yesterday I blocked one, claimed to represent the "Local Police Union", but with an LA area code. Nope, not happening.

Thankfully however, most of these scammers have about the level of sophistication as you seem to know (not an insult, being accurate here), and run their operations like a bunch of amateurs.

Replies:   Dominions Son
Dominions Son ๐Ÿšซ
Updated:

@Mushroom


Especially if you are running multiple lines, as the overhead of running individual "VOIP phones" is very high.

I was in a corporate office that switched all the desk phones to VOIP. The company seemed to think the VOIP phones were cheaper.

All you needed was a live LAN port to plug the phone into. You actually had to log in the phone into the network but that made it possible to easily move your office number to a different desk. Just log out the phone already at that desk and log back in with "your" phone number.

My home phone line is VOIP through my ISP. Again, all I need is a VOIP phone which isn't any more expensive than a pots phone and an open LAN port to plug the phone into.

Replies:   Ernest Bywater  Mushroom
Ernest Bywater ๐Ÿšซ
Updated:

@Dominions Son


The company seemed to think the VOIP phones were cheaper.

Here in Australia we pay for every byte of data uploaded or downloaded, and we pay for calls outside of the local area based on time and distance. Thus, many of the big companies saved a fortune by converting to VOIP for their phone systems. They already had dedicated high capacity high speed data lines between their offices in the capital cities. The bulk of the use of the lines by the IT dept was at night for daily backups etc. It was cheaper to have a full-time dedicated line than try for one at night, so they sat very idle during the day. Then someone realised over 80 of the interstate phone calls were to their other offices. Swap the phones to VOIP in the dedicated lines and there goes over 95% of the phone bill. The lot went through a server in each city that directed the phone calls to the network or the normal phone system. Most soon had interstate calls to clients being directed through the voip system to the office in the city nearest the client and then it usually became a local call on the POTS instead of a long distance calls. That took care of a hell of lot more of the phone call bill. Some companies reduced their phone bill to less than 1% of pre VOIP and for no extra transmission cost, just the once of cost for the hardware and the software needed.

Mushroom ๐Ÿšซ

@Dominions Son

I was in a corporate office that switched all the desk phones to VOIP. The company seemed to think the VOIP phones were cheaper.

All you needed was a live LAN port to plug the phone into. You actually had to log in the phone into the network but that made it possible to easily move your office number to a different desk. Just log out the phone already at that desk and log back in with "your" phone number.

My home phone line is VOIP through my ISP. Again, all I need is a VOIP phone which isn't any more expensive than a pots phone and an open LAN port to plug the phone into.

Overhead, as in bandwidth. Not cost.

At work you are probably using a real professional VOIP system. Where there is a single device hooking them all into the Internet. And depending on which system you are using, there may be other requirements (like say Cisco Call Manager).

This is very different than say Skype, Ooma, magicJack, Ax, or one of the dozens of others. Those each connect as an individual device, so have their own individual management (hardware and software), which will bog down your system if you have to many of them hooked up.

Use a solution like that with 10 lines, you have 10 different devices, all connecting individually. With a professional system like Cisco, Adtran, or any of the other "Professional Systems", and you do not have that at all. The switching equipment is going to manage all of those phones at once, and the overhead is going to be the same, be it 5 lines or 50 lines.

In your case, your ISP is providing that service, so it is the same thing. That is not the case with most turnkey systems out there.

And VOIP phones are significantly cheaper, depending on your phone needs. PSTN numbers can be as cheap as $10 a month in most areas. And want to cut your long distance charges? This is what many companies did 20 years ago when VOIP was in it's infancy.

Especially as most commercial VOIP solutions use the Internet to completely skip the traditional POTS system. Instead of going through the century old long distance system via switching, they see the destination is say Boston. It then simply forwards the call to the closest POTS gateway, where it then drops from the Internet to POTS, and is made like a local call.

Our cell phones do the exact same thing, which is why we do not pay long distance charges on them either.

Set up a PSTN number in a location you called a lot, then any call made from it was local, no matter where in the world you were at. Call Moscow every week? Get a PSTN in Moscow, and literally every call is local from Moscow as far as the local system cares.

But thankfully, most of the scammers are not technologically sophisticated.

Dominions Son ๐Ÿšซ

My favorite along these lines was around 30 years ago.

My parents had a small business (wedding photography) on top of my dad's day job. Because of this we had a two line small business class phone at home.

At the time my older brother was having financial problems (college debt). Both me and my older brother, in our early 20s were living with our parents.

I was at home alone. My parent's phone rang, and I answered only to here a recorded message saying "Please hold for an important phone call", so I put it on hold and walked away. It was close to an hour before the line was disconnected from the other end.

Switch Blayde ๐Ÿšซ

Our government actually did something good one time. They set up a Do Not Call directory. If you registered your phone number on the Do Not Call register then if you report the calling company they would be fined.

It worked really well until the government fucked up again. Once it was in place and working, they ignored it so the callers started calling again without fear.

Of course certain sale calls were excluded from the Do Not Call. One was if you had done business with a company they could give you a cold sales call (and "done business with" was loosely defined).

And the second one excluded from the Do Not Call were political calls. Who would have guessed that?

Replies:   Mushroom
Mushroom ๐Ÿšซ

@Switch Blayde

Our government actually did something good one time. They set up a Do Not Call directory. If you registered your phone number on the Do Not Call register then if you report the calling company they would be fined.

The problem really was that most call-centers at that time moved overseas. There was simply no way to "fine" a company working out of China or India.

And to compound it, those very same spammers then used the "Do Not Call List" as a call list! Is not like they were ever going to get fined, they were not even in the US to begin with. I discovered that when I added my number, and within a month had 10 times more calls than I had before.

Of course, this was also the era before Robo Calling.

Replies:   Switch Blayde
Switch Blayde ๐Ÿšซ

@Mushroom

The problem really was that most call-centers at that time moved overseas. There was simply no way to "fine" a company working out of China or India.

But if it was an American company using an overseas call center, the company should still be fined.

My car warrantee spammer is an American company. I don't know where the caller is, but the caller is representing the company.

Replies:   Mushroom
Mushroom ๐Ÿšซ

@Switch Blayde

But if it was an American company using an overseas call center, the company should still be fined.

Why? Will not happen, unless it can be proven they are aware that the company is breaking the law, and does nothing about it.

BlacKnight ๐Ÿšซ

I've had my email openly online for more than 20 years, including on Usenet back when Usenet was a going concern. I run SpamAssassin on my mail server, and any time I get spam, I feed it to the Bayesian filter. It's been more than a month since a spam email actually made it through to my inbox.

I don't answer the phone if it doesn't tell me who's calling. If for some reason I'm getting a legitimate call from someone who's not in my contact list, and it's actually important, they'll leave a voicemail.

For a while I had a landline that I was using only for DSL, but the phone company wouldn't let me set it up without voice service. So I plugged it into a modem, and set it to pick up as soon as the line went live, before even the first ring, and negotiate a PPP connection with the caller, so that I could dial into my network remotely (back in the days before public WiFi was everywhere... or anywhere, actually).

The major phone-spam companies use mass dialers that call entire blocks of numbers and just connect whichever ones pick up first with their actual humans. Because I had the modem set up to pick up immediately, mine would always answer first, and then start squealing in their ear. The fancier dialers, unfortunately, would recognize that they'd called a modem and actually negotiate a connection instead of handing it off to a human, and then either just hang up or try to send me a fax.

My favorite anti-spammer measure, though, was the time I got a sales call from the subscription department of the newspaper where I was working IT. It went kind of like:

"Hello?"
"Hi, this is the [newspaper redacted to protect the guilty], the best source of local news in-"
"Hello, Shirley."
"..."
"How are your two lovely children, Shirley?"
"-click-bzzzzzzz...-"

Back to Top

 

WARNING! ADULT CONTENT...

Storiesonline is for adult entertainment only. By accessing this site you declare that you are of legal age and that you agree with our Terms of Service and Privacy Policy.


Log In