Almost Half of US Cellphone Calls Will Be Scams By Next Year, Says Report

According to a new report from First Orion, nearly half of the mobile phone calls received in the U.S. next year will be scams. "The percentage of scam calls in U.S. mobile traffic increased from 3.7 percent last year to 29.2 percent this year, and it's predicted to rise to 44.6 percent in 2019, First Orion said in a press release Wednesday," reports CNET. From the report: The most popular method scammers use to try to get people to pick up the phone is called "neighborhood spoofing," where they disguise their numbers with a local prefix so people presume the calls are safe to pick up, First Onion said. Third-party call blocking apps may help protect consumers from known scam numbers, but they can't tell if a scammer hijacks someone's number and uses it for scam calls. "Scammers relentlessly inundate mobile phones with increasingly convincing and scary calls," said Gavin Macomber, senior vice president of marketing at First Orion, in an email statement. "Solving a problem of this magnitude requires a comprehensive, in-network carrier solution that dives deeper than third-party applications ever could by detecting and eliminating unwanted and malicious calls before they reach your phone."

Easy to fix

[OrangeTide]

But carriers don't feel like doing it.

Re:Easy to fix

[iggymanz]

indeed, they'd rather knowingly sell blocks of numbers to the same Indian scammers they sold another block a month before.

Yes, India. India is the major source of this problem. I'm in favor of cutting trade and business with them until they clean up their act.

Re:Easy to fix

Actually, it would be a killer feature. "Choose Versprint&T Mobile and avoid those unwanted calls"

Re:Easy to fix

[balsy2001]

When I lived in South America (years ago), there were extra costs to call a cell phone from a land line. Not sure it would be a good idea, but the only reason telemarketing works is because the economics are there to support it. Want to stop it, change one of the inputs in the equation.

Re:Easy to fix

[ShanghaiBill]

A big part of the problem is dumb incompetent spammers. When I get a spam call, I press "1" to get a human, and then I say just enough to hook them into thinking I am a mark. They I ask them to wait on hold while I go get my credit card. After a few minutes, I check the line, and if they are still waiting, I give them fake CC numbers until they give up in frustration. It is especially gratifying when they start spewing profanity at me. I love that.

But here's the thing: THEY KEEP CALLING BACK. The SAME company will call back day after day with the same stupid line about the IRS, or Microsoft anti-virus warnings, or "Rachel at cardholder services". Why don't they flag people like me, and stop wasting their time? It makes no sense.

Re:Easy to fix

[omnichad]

They don't have to buy blocks of numbers. Just spoof caller ID. It's illegal to do with numbers you don't own, but they're not bothered by that.

Re:Easy to fix

[ShanghaiBill]

How ?

Calling party pays.

This is the way most of the world does it. Spam calls are mostly an American phenomenon.

Other countries have the "one ring scam", where the caller rings once and then hangs up, hoping a foolish person will be curious and call back. But most people do NOT call back, and the call can be traced since you have to disclose your real call back number. Also, phones in some countries have a feature where the second ring is the first audible ring.

Another reform would be to restrict spoofing. You should only be allowed to spoof if you own both numbers. This is another "American problem".

Re:Easy to fix

More and more of the robodialers are using computers to do it all. You're not talking to a person, you're talking to an AI system that uses voice recognition to carry out a basic conversation. Make sure you're doing a Turing test. Your ability to waste a human's time is rapidly going away.

And as far as calling back multiple times: the reason is, though you didn't fall for whatever they were pitching, perhaps the next person to answer will...your wife, your elderly mother, your daughter, etc. Keep throwing it at the wall in the hopes something sticks.

Re: Easy to fix

[AntronArgaiv]

Extremely easy.
1. Set default ringtone to a single "ding" (as used to announce an SMS or email arrival)
2. Set ringtone for everyone in your contacts list to "old telephone"
3. When phone "dings", check number, answer if it looks like one you were expecting, otherwise easy to ignore
4. Folks in your contacts list will cause phone to ring normally.

Re:Easy to fix

[davecb]

Canada has a (slow, but effective) do-not-call process, similar to our anti-spam law. Once the sponsor has been identified, such as a certain company selling cruises, they are charged in court, fail to successfully defend themselves, if at all, and are fined out of existence.

Re:Easy to fix

[OrangeTide]

Mandatory death penalty if convicted of wire fraud involving a senior citizen. Including full extradition of foreign nationals who commit this crime. That will slow scamming down a whole lot, and get politicians the senior vote.

Re:Easy to fix

[Solandri]

Nope. For cell phones, most of the world uses the "both parties pay" model (the receiver pays for the convenience of getting a call via mobile). Under this model, because the recipient is paying for the spam call, they have a financial justification to complain to their carrier and require them to block the spam calls, and a legal right to sue the spammer for costing them money. The U.S. used to have this model before most cell phone plans went to an unlimited minutes model.

Calling party pays (and unlimited minutes) frees the spammer from any liability for spamming. They're paying for everything, the recipient pays nothing. So the recipient has no legal nor financial recourse to request a reduction in spam. This is why your mailbox is full of junk mail. Because the junk mail senders are paying for everything, and in fact are subsidizing first class postage.

Another reform would be to restrict spoofing. You should only be allowed to spoof if you own both numbers. This is another "American problem".

Spoofing numbers you don't own (as part of spam or a scam) is already illegal. The problem is (1) there's no way for the recipient to figure out who the actual caller from a spoofed number is, so they don't know who to sue or even complain about. And (2) as with junk mail, the spammers make up a significant fraction of phone company revenue, so the phone companies don't want to fix Caller ID to make it impossible to spoof a number they don't own.

With regards to (2), the phone companies are protected by their Common Carrier status, so it's probably going to take a change to phone protocols to prevent spoofing. e.g. Change how VoIP-to-VoIP calls are made so they also send a datagram encrypted with a private key owned by the caller. The receiving VoIP device looks up the Caller ID number in a public database to find that number's public key, and uses that key to decrypt the datagram. If the decryption fails, then it knows the caller doesn't have the proper private key for that Caller ID number, meaning the number has been spoofed, and drops the call. If the decryption is successful, then it knows the Caller ID info is accurate and allows the call to ring through.

Re:Easy to fix

What on earth are you on about, in Oz, calling party pays. Ive never received a spam call on my mobile. Guess it’s just another way Americans take it up the arse from corporations, they bend over and lube up at light speed.

Re: Easy to fix

It's quite common in the UK too.

Re:Easy to fix

[Jaime2]

Even easier - carriers shouldn't accept a call from outside their network if the caller id is for a number that's inside the network. That would stop 95% of the spam calls I get.

Good

[AlanBDee]

I'm glad, it hope it gets worst. I'd say 90% of incoming phone calls I get are scams or telemarketing calls. The worst it gets the more likely the carriers will do something about it. Until then, I'll continue to set my blocking app automatically hang up if they're not in my contact list. I'd be even happier if i could send them to the Jolly Roger phone company with a simple button press.

Re:Good

[markdavis]

>"Until then, I'll continue to set my blocking app automatically hang up if they're not in my contact list."

Care to share the love with info on what you did/use? First, I didn't think any app could have that permission, so I think it would require root, which rules out use by most people.

But it sounds like you have something similar to what I want (which is doable on a land line, but apparently not on cellular). I don't want a "service" from some third party. Ideally I would like something, non-root, that would silently answer calls from anyone NOT in my contact list and challenge the caller with a simple math problem or something like that. If they fail, it hangs up WITH NO VOICEMAIL OPTION, perhaps with a warning to remove my number from their list. But it still logs the call event WITH NO NOTIFICATION. If they pass, it rings through as normal.

The problem right now is that stock Android is EXTREMELY weak when it comes to anti-call-spam. And almost any option you try, still gives them freaking voicemail options, which are just as annoying as a call, if not more-so, because you still get annoyed by a notification, have to go find the stupid voicemail app, wait for it to load and download the audio, listen to it, then delete it, every time.

I would even be partially happy if I could just have the option to not allow voicemail for dismissed calls. So frustrating.

Re:Good

[AlanBDee]

I use an app called "Should I Answer". In there it has an option to block any caller not in my contact list. If it's a known scammer it does nothing. If it's not sure then it will forward to voicemail. For voicemail I've got it set to forward to my google voice number. I then get a notification from the google voice app that I have a voicemail which was kindly transcribed and probably sold to marketers or used in AI training.

Before that I used an app called Mr. Number but they removed that feature so I removed their app.

Re:Good

[Greyfox]

I use Advanced Call Blocker. It has a number of handy options it can block on, including not accepting calls that aren't in your contacts. You can also blacklist entire area codes, calls without caller ID and bunches of other stuff. I set incoming calls to go to my voicemail unless they're in my contacts list. It's also easy to disable if you order out for pizza or something.

Re:Good

[markdavis]

Reply to self. I did some more research and decided to at least try SOMETHING. After reading and reading, I ended up installing this:

https://play.google.com/store/...

Calls Blacklist - Call Blocker by Vlad Lee

10,000,000+ installs, very high rating, lots of positive reviews and articles. But it has some annoyances, like asking to be the default dialer/phone app EVERY TIME you look in the log (since I don't want it to have that ability). But the powerful feature is there is a single click in settings that blocks all calls EXCEPT those in your contacts and whitelist. And it does seem to work (I have been testing it). There are some issues and limitations:

1) Sometimes one ring will go through
2) It can't prevent voicemail options
3) It seems to want to leave a persistent notification else it is "slow to react"
4) Has ads on the log page, but that isn't bad, plus there is a "pro" (paid) version if that annoys or you want to reward them.
5) It will block your own landline, even if you the number listed in the Android hard-coded "Me" contact. So you will have to add yourself again, as another contact and list your home or other "own" numbers there (I tested that it works).

The important thing is that you really have to remember to add anyone you want to allow calls, and any number they might use, to your contacts OR the whitelist. That won't work well for people who give out their number to businesses or for casual use. But since I don't do that, and rarely give out my cell number, I should be OK, as long as I remember for those few exceptions. Of course, at least voicemail will work in those cases.

All of 'em

[fyngyrz]

All of my cellphone calls are unsolicited and unwanted.

Because anyone who actually knows me knows I don't answer phone calls. My default ringtone is silence. I have actual make-a-noise ringtones for a couple of family members in case of emergency, but (thankfully) no one's tried to call me for an emergency in the last ten years or so. And the fam+friends know better than to make that thing ring for anything else; I'll just bite their head off. :)

AFAIC, The phone system's been outright ruined by spammers. And so far, unlike email, there's no phone call spam filter worth the name.

Text me or email me, otherwise, you go your way, I'll go mine.

It's not a phone — it's a pocket computer

Re:All of 'em

[Darinbob]

I will use the phone for actual voice conversations. However the amount of robocalls and advertising has trained me to not accept any call if I don't know the number. I have refused to answer the phone for someone who turned out to be a coworker for intance. My reasoning is that if the call is important they will leave a voice mail. But then most of the voice mail is just too, but at least I can filter it out at a preferred time instead of on demand. Not everyone I want to contact me can text me.

I'm really surprised that in the US we've gone from a society that used phone calls regularly to one that shuns them almost completely in less than a decade.

Re:All of 'em

[Attila+Dimedici]

The spammers count on that sort of behavior by people who are not likely to fall for their scam. When their robocall gets no answer, it moves on to the next and costs them essentially nothing. When I get those calls I spend as much time as I can spare (usually when I am doing something else that does not require verbal interaction from me) keeping a human on the line as long as I can. That costs the spammers money. It doesn't really cost me anything because they are following a script that does not actually require me to pay attention to what they say and just provide an affirmative noise at the appropriate points, right up until they ask for a credit card, at which point I tell them "No". At which point they usually put on another person who goes through the script again. And if I finish whatever I am working on before they are done, I hang up.

Thats Funny...

[balsy2001]

You still have a land line.

Re:It's not that hard

[omnichad]

The calls are terminating via US carriers. It's just a VoIP trunk going overseas from there and there's no way to know where the actual microphone and speaker are.

Time for PKI in Caller ID and network connections

[StandardCell]

The remnants of AT&T's ancient SS7 are still infecting voice calls today. Back then, it made sense to not authenticate caller ID information because the threat model required physical access to phone company switches and a lot of equipment to implement. It wasn't feasible.

Now that VoIP and packet-switched networks have replaced circuit-switch voice band twisted pair landlines, we still lack a way to enable secure authentication to a trusted root of who is actually calling. The FCC is supposedly looking into solutions, but implementing PKI in the network can prevent these calls from ever getting to people. Many of these scams are on VoIP gateways that have default passwords.

Normally I'm against a lot of government involvement in people's lives, but this is one place where it's required. If Congress could pass the CALM act to end annoying loudness changes in broadcast TV, the passing of which had little economic consequence, then Congress can definitely get their act together and pass a law to do the same for authenticating phone calls using PKI and removing security holes. Inaction in this area already has a tremendous negative economic consequences, particularly for the elderly and other vulnerable individuals who are defrauded systematically and who are typically more reliant on phone services due to their ease of use and familiarity.

The real tell in all of this will be what the carriers do when this is enacted. I suspect there will be tremendous resistance spearheaded by the argument that it will require equipment replacement. I'm not sure that's the case given that the magic is in firmware, but more on the system engineering side. In that case, let them put a deadline down to get their act together. Where there's a will (and a law), there's a way.

Oh hey, look, it's you, AC

[fyngyrz]

Within my remarks is a potential 0-spam, 0-coldcall, 0-dunning, 0-buttdialer, 0-random-idiot solution for those adept enough to grasp it.

It's quite possible that group may not include you.

I'm okay with that. In fact, your "who cares" is exactly how I feel you. Isn't that curious?

Cheers. :)

This boggles my mind

[JustNiz]

> The most popular method scammers use to try to get people to pick up the phone is called "neighborhood spoofing," where they disguise their numbers with a local prefix

The originating phone company must by definition know what line or cellphone the call is actually being made from. It boggles my mind why phone companies even (continue to) provide this functionality in the first place. I very much hope that it becomes illegal soon.

Re:At least it's still illegal to spam cellphones

[markdavis]

>"At least it's still illegal to spam cellphones"

Except it is apparently civil and not criminal. So nobody cares and they go right ahead and spam. Same thing with junk faxes- which are also illegal, and yet only civil. As if someone is going to find and pay a private detective to find out who REALLY faxed, then find and pay a lawyer to maybe find and sue that party, then have to take time off work to do all that and to go to court, to MAYBE get a few dollars or something. It is a total joke.

Unless it is criminal and actually enforced, nothing will change. We need a system where if you get a spam call on ANY line, you hang up, then dial a simple code, and it automatically reports them to the FCC/FTC/whatever, real-time, and they actually DO something about it when it is confirmed by a second report from someone else. But don't hold your breath, that will never happen.

The best we can ACTUALLY hope for, MAYBE, is to close ALL the loopholes that allow people to fake or hide their actual phone numbers and where calls are coming from. At least then, some filtering and blocking techniques might have a chance.

Why? Because it works.

[dark.nebulae]

We all get these stupid calls. Indian-based Microsoft support proactively finding a problem on your computer and they have the solution. We heard you suffer from chronic pain, we have things that will help. You've been selected for a free trip to Disneyworld. There's a solution for your creditcard debt. Refinance your student loans to get a lock-in before DeVoss ends the program.

It is all bullshit. We know that.

So why do they keep coming?

Because they freaking work. You get one moron that only goes online once a week on their 56k dialup line at home to check the facebook, they're more than willing to whip out their credit card to take advantage of such a limited time, exclusive offer.

It's that one moron that ruins it for us all. The scammers then make money, the carriers make money, etc., so they are incentivized to call the rest of us looking for more idiots.

Robos

[Impy+the+Impiuos+Imp]

Unless I am expecting a call from a mechanic or something, I haven't picked up a phone number that doesn't give caller ID in a year (to say nothing of "unknown" numbers.)

Fight Fire with Fire

I used to get a lot of calls from India. At first I just told them to fuck off but the calls kept coming. Then I tried spending time winding them up but that always seemed like a waste of my own time. The thing is, I spent more than a decade studying psychology so it eventually occurred to me to use that. The question was not how to tell them to fuck off but how to get them to decide to fuck off for themselves. India is heavily honour and family oriented. This is a rough transcript of the last call that I answered, now many years ago:
Me: Hello?
Scammer: This is John from Microsoft, you computer has a virus.
Me: Have you told your parents that your job is trying to steal money from people like them in another country?
Scammer: [5 seconds of silence] ... [strangled voice] ...no... [line disconnects]

The number of scam calls dropped hugely. I like to hope that at least one Indian decided to move on to an honest job instead.

Re:Fight Fire with Fire

Caller (recording): This is Rachel from cardholder services.
Me: Rachel! You are a fucking slut!
[hangs up]
Never called by Rachel again.

True story.

Re:Fight Fire with Fire

[dargaud]

I was really proud one day that I managed to get a scammer to cry in the phone with this exact same line.

Re:Authenticated/unauthenticated caller id flag

[sjames]

Carriers in the U.S. could be forced to cooperate by the FCC. For calls from countries that don't play ball, force the caller ID to display the country of origin.

There are few if any reasons to allow a caller to spoof a number that they don't actually own. Those few could be handled by a call relay or at least a signed legal document accepting responsibility for the spoofed calls.

Simple fix for that

[erp_consultant]

I've got an App called Call Blocker on my phone (android). If anyone calls me and they are not in my address book it goes straight to voicemail. Most of the time, of course, there is no voicemail because the robocall hangs up. If it does happen to be something important the person can leave a message and I'll call them back. The beauty of it is that the phone doesn't even ring.

I gave up on trying to block numbers because it just seemed like a game of whack-a-mole. The scammers would call from a different number next time.

Works for me and it's free.

Re: Opportunity to learn how to program robot dial

[reiterate]

Just like the good ol days

Trivial to fix

[TiggertheMad]

These are fine ways to fix the problem, but completely unnecessary. The phone company could fix this problem if they wanted to, but they make money from letting it persist. The one way to fix the problem once and for all, is to make it unprofitable for the phone company to facilitate this behavior. Just slap a 10 million a day fine on the phone company for each day there is a complaint registered, and the problem will 'fix' itself inside a week.

Its the fuckers running things. They don't give a shit about customers if it means they make a few million more each year.