FTC Awards $50k In Prizes To Cut Off Exasperating Robocalls

coondoggie writes "The Federal Trade Commission today said it picked two winners out of nearly 800 entries for its $50,000 Robocall Challenge which dared technologists to come up with an innovative way of blocking the mostly illegal but abundant calls. According to the FTC, Serdar Danis and Aaron Foss will each receive $25,000 for their proposals, which both use software to intercept and filter out illegal prerecorded calls using technology to 'blacklist' robocaller phone numbers and 'whitelist' numbers associated with acceptable incoming calls." Can't wait until Symantec, Kaspersky, etc. sell competing anti-spammer packages for phones.

Re:Where's that checklist when I need it

[mbkennel]

(x) it doesn't make the return from doing illegal activities negative
(x) it doesn't make the people who deserve to go to prison go to prison

Worthless...

Worthless. 99% of all illegal robocalls currently spoof their CallerID. I get robocalls that appear to be coming from my neighbors (robocallers frequently spoof a number that is in the same areacode and prefix as the number they are calling). When I subpoena phone records, the calls actually came from across the country from some podunk reseller in California. All that will happen is that robocallers will start spoofing the whitelisted phone numbers.

You need 1) some indication that the callerID has been falsified (i.e. does not match the exchange of the originating ANI) and 2) have carriers impose restrictions on their clients ability to spoof CallerID, such as requiring them to register the numbers they want to spoof in advance, and prove they have a right to use those numbers in outbound calls (such as a call center making calls for a client, where they legitimately need to put the client's inbound 800 number in the outgoing callerID).

Crude ACL

[PhraudulentOne]

I run a telephone network in Canada, and I have somewhat of a Crude "ACL" for a system-wide blocklist. I have been using it for years, and it's pretty effective though not very efficient to manage.

I monitor incoming trunks and alarm on spikes. When I get a spike from a robodialer, I look up the number online to see if it's listed as a scam or generic robo call. If it is, I simply add it to my "ACL," and all further calls coming into my system are rejected with a short message. The message states that if they would like to phone anyone on our system they need to first call our main business office (the only number they are allowed to dial) and explain who they are.

I have a large list of obviously fake numbers that I reject (all zeros, 01234567890, 1111111111, etc )

Occasionally I will have a collection agency that phones in and complains that they are a valid business, and that they should be let through (using a number such as 1-000-000-0000. I explain that there is no valid reason why they would need to spoof their number, and that they should dial as PRIVATE or BLOCKED if they want to proceed. I simply do not allow them to phone in.

I'm not totally sure on the legalities of this, but customers love it, and I enjoy the satisfaction of blocking a tonne of calls. I have no way of dealing with companies that spoof local numbers, but I can at least block all of my exchanges as they would never be coming back in over the same trunk group as these robo dialers anyway.

This is one of those projects that I have slowly tweaked over time, but I am considering writing scripts that will go out and crawl those common telephone complain sites to build a list on the fly every week and add those numbers to my 'ACL.' It would be nice if there was an up-to-date 'spamhaus' equivalent for phone numbers.