Slashdot Mirror
Telus Puts A Stop To 'Modem Hijacking'
TheIonix writes "Telus, a major telco in Canada, decided to block long distance direct-dialed calls to four countries to help reduce dial-up 'modem hijacking'. The article explains: 'When the [dial-up] user downloads [certain malware programs], the downloaded file accesses software on their computer and causes the modem to dial phone numbers in foreign countries, resulting in long distance charges.' 4 countries were targeted: Guinea-Bissau, Guyana, Nauru and Sao Tome. It is still possible to call to those countries with the operator assistance and the fees are waived. Now let's see if this nice idea will be followed by others."
Granted auto dialers to these countries will no longer function, but I suppose the loss of the one customer who regularly dials Guinea-Bissau, Guyana, Nauru and/or Sao Tome in Canada vs. the gazillions of mad people for bum phone bills weighs itself out. However let's see them try this with a bigger country having auto dial issues as well (Thailand, Vietnam and former Russian republics come to mind). A step in the right direction, but not hardly a full solution.
...in bed
Telus needed to do something, I know from experience that this is a serious problem. 16 dollars for some call to africa i never placed, I had no idea about this stuff, fortunately Linux is immune to these things. Here's an idea: Don't hook up the phone line to the computer unless you plan on going online. That way if one of those stupid dialers fire up, its evil plan will get foiled.
It only affects their customers, and only with malware dialing to four specific countries.
With that kind of sensationalist headline, you'd think they released a benevolent worm that safeguards against hijacking.
Seriously, is following the money, reversing the charges and putting the people responsible behind bars all that difficult?
Because that would be a huge hassel to implement compared to the 1 operator it will take to handle these calls to countries most people don't know exist. When was the last time you called Sao Tome(of your own will)?
make the programs dial different countries. simple.
then the telcos will block those countries...
until we need operator assistance to dial anything!
(extreme)
Seems like this problem may soon be eliminated by obsolescence.
Risking a plunge from the Offtopic cliff, I wouldn't call paying taxes a good thing. It's more like a necessary evil that is abused by government at every chance.
"In this particular case it doesn't seem to me to actually be the government doing this anyway."
Indeed, I posted the correction as AC.
"Ask not what your country can do for you." --John F. Kennedy
I thought that any act by government restricting our freedom, no matter how benevolent their intent, was a bad thing.
Telus is a telco, not the government.
How bout they focus on educating the public about malware instead?
Have you ever tried educating the public about anything?
Remember last week, when CERT recommended MSIE users consider switching browsers, and MSIE usage fell to under 10%? It didn't happen quite that way, now did it?
Remember, this is the same public that buys RIAA music, believes they'll go to hell if they "sin", and trust voting machines because they're convenient.
E.g. who in their right mind accepts credit card orders from Romania, Russia or Indonesia when it is well known that the vast majority of those card numbers are stolen?
But I think that what is right now simply a major annoyance to on-line vendors and users (spam, phishing, etc.), will eventually backfire at the countries that are unable (or more likely do not care to) to control Internet fraud of various kind sas they become more and more blacklisted and left out of the Internet economy. This will eventually force their governments to pay attention to the issue. I bet already it is pretty frustrating to be an Internet user in one of such countries and know that most vendors on the internet will not accept any payment from you simply because of your country of origin...
Most of these international telecom LD companies use voip, and the gateway will negotiate to the right codec depending on whether its a data or voice call. Have the carrier detect whether its a voice call or data call and drop on the results.
Have you ever been to a turkish prison?
To his credit, he doesn't write the dialers themselves. He just writes generalized billing systems
Yeah. For a second there, I thought your friend sounded like an unscrupulous piece of shit, but knowing that he doesn't actually write the diallers themselves has given me new respect for him.
What's your point exactly? This sounds like a lame excuse to absolve someone of responsibility for supporting behavior of dubious legality and even more dubious morality.
Guess what? A good case could be made that some people might *want* to pay premium phone rates to access some good quality porn via a dialler. If other people and their backup team (your 'friend') abuse this capability, whose responsibility is that then?
"Slashdot - News and Chat Sites Deviant". (Click "homepage" link above for details).
>>
Remember last week, when CERT recommended MSIE users consider switching browsers, and MSIE usage fell to under 10%? It didn't happen quite that way, now did it?
CERT publishing a security notice is nowhere near "educating the public".
No one apart from geeks has heard of CERT or sees their notices. Say "CERT" to someone and they'll assume you're talking about an antacid tablet.
It's typical of some people employed by or enamored of a technical specialty to blame the "public" for not being as specialized as they are.
Besides, if someone wants to start educating the public, I'd rather they begin with things like using a turn signal.
-- Slashdot: When Public Access TV Says "No"
Offer a free international call blocker to all subscribers and allow them to block out all the countries they are reasonably sure they would never call. When you try to call a foreign country that's blocked, a recorded message gives instructions on the procedure for removing the block.
That was the turning point of my life--I went from negative zero to positive zero.
Telus is not doing this to protect its customers, it's doing it to protect is own bottom-line. I would imagine that the vast majority of people caught by the modem high jacking scam refuse to pay their bills. They call and complaint, Telus backs down, and it is stuck holding the bag.
This strategy ensures that Telus is never stuck again, plus, it gives them good PR because it appears that it is looking out for its customers. Yeah right.
If someone says he and his monkey have nothing to hide, they almost certainly do.
This isn't restricted to the phone companies of the country that the dialer is calling. Eircom, the irish ISP, actually charge additional rates of up to 6 euro a minutes when one of the known dialer numbers is called!
Still, free email addresses. Can't beat that.
May the Maths Be with you!
That's very stupid. They should go after your friend and people who make money from others. You can bet some poor sucker got paid $50 or less to write the dialer if they even got paid. Once it's made, you have it, just change the number it dials.
It's the telco's and the porn companies that need to be held accountable since they are the ones distributing and profiting from this computer hijacking. They could possibly face jail time for that if they are in the US. Not sure, but it seems there are stricter laws all the time.
Writing a dialer is pathetically easy. Even from a simple DOS prompt, one liner
echo "atdt 1-123-456-7890" > com1:
This is once step BELOW spammers in my opinion, and your using the same pathetic excuses they do. People shouldn't make it so easy to do. Spam at least is only for idiots. Your taking control of computers and waiting until people won't notice.
It's not email software or dialer software that is the problem. It's the scum who take these useful tools and use them to try to rip people off.
Or ...have all calls routed to the operator by default. If you are a regular caller to these countries, then ask the operator to set a flag on the telcos database, so that from then on, you can dial direct.
Most people would only be dialing these countries if their box had been hijacked. People who regularly need to call these countries direct would be able to opt to have the convenience of direct dialing at their own risk.