Believe me, I know. I like to educate users on being wary of downloads, encouraging the installation of antivirus and firwalls and have them check updates.
The main reason why Spyware took off so well is due to MS Exploits that Microsoft failed to patch in due time. The MS Firewall is junk.
The simple matter is - people don't care about learning. Most people just want a quick fix for things and dont want to prevent issues.
I already boycott IE, even in tech support calls I tell end users to check out www.getfirefox.com to prevent most spyware from being put on your system.
Microsoft has to know by now that web developers and power users want a standards compliant browser for once. Even with competition (Mozilla, Opera, Apple/Mac)... they still can't strive to meet the basic expectations.
AOL Cable and AOL DSL get *.aol.com and *.aol.net IP addresses
Re:One solution... inform users about their bots
on
Zombie Report By ISP
·
· Score: 1
That sounds great, I agree. However, the mass populous would react like "why are you sniffing my connection?" and stuff like that. Even slashdotters would flame that to black piece of toast.
Plus, what would indicate a zombied system... some ICMP data, some "unusual" activity, like P2P? Thats up to interpretation of both the transmitter and reciever of data. Then again, people would say AOL is the gestapo for filtering its connection.
Sends all kinds of info?
AOL just polls the WMI service for troubleshooting data, just your basic info, nothing more.
AOL uninstaller seems to work fine for me
People simply dont. People (on AOL) want things done for them, and they place themselves into this "zero-responsibility" phase so its even worse.
AOL has free virus scan, firewall - the basics for being secure online - but the users dont get them. AOL isnt going to just put one there on their system.
AOL is a strong partner with Google and google adds to AOL services. I dont think they are viable "competitors" but just for metric purposes, its interesting to see google surpass a media conglomerate.
Luckily, AOL switched to Google search results and dumped Yahoo/Inktomi from its SERPs
This doesn't resolve anything except make end users on both sides angry. This is very unproductive for both parties.
I can say this well, lets say I know how things work; they have automated spam blocking mechanisms to disable accounts who spam. A majority of accounts used for spamming are compromised, and that is the issue. Repeat offenders are terminated. No questions, and they can not reactivate. Spammers are just password cracking accounts and bulkmailing out of them. It sucks because a few people who do it ruin it for everyone!
I was helping a fellow member who couldn't CC 20 people on his biker club list. So, AOL is aware of the issue and trying their best to crack down on the bulk mail. Adding them to a blocklist WILL NOT stop bulk mail. This shakeup is not gonna "make AOL" doing anything.
Not all times our voice is the same. We all know we need to go to the pharmacy and get some meds in the middle of the night.
How will it be for people who can't speak into the card when they are sick.
This treads between usability, since I foresee a lot of problems. How about this; use a PIN for ALL credit and Debit transaction. Must be greater than 5 digits. Thats more security, but something we have adapted to use.
I posted this in my blog.
So not sure of you are aware, but Slashdot is running a posting stating the headline that AOL Monitor Accused of Luring 15-Year-Old for Sex which is false in context if you read the article. Also I have some insight on how these "AOL Monitors" work; since people have very minimal perspective them besides faulty articles and rumors.
First, to summarize the article: Some [woman] online is suing AOL because when she was 15 she was conversing with an AOL "Monitor" (Community Leader - CL), and she was considering meeting that fellow around the age of 17, but never did. Now she is 19 and suing for psychological damages somewhere around $250,000. The Community Leader was/is (not clearly disclosed, 23 years old, male).
First, AOL has this program for tenured AOL members call Community Leaders so they can empower the service and its members on how to use the service, and to moderate chats, message boards and other "public" areas on AOL. The requirement is that they commit to about 3 hrs a week to this "community work" of talking with other members abnd also creat lively good discussions. As a reward; they get a free unlimited usage AOL account ($23.90 value). Most people who do this are usually either Retired people, or Stay-At-Home types who like the internet. Some of the featured areas are Kids Only (KO), and Teens (RED) where moderators regulate chats. They do a FINE job of protecting the community and KO chats. I see a number of accounts with these CL's scrambling passwords and leaving notes that 'this SN said their full name' or like 'this SN said their address'. Its not a bad thing, but helps parents talk to their kids about online safety. These CL's like what they do since it helps everyone have a safe, more rewarding online experience.
The abuse comes in when there is a line of trust with these accounts. AOL does its best job of screening applicants for a CL position. They must have an AOL acct for a minimum of 1 year, with NO terms of service violations, and must pass a criminal background check. A majority of applicants are refused for various reasons and only the outstanding few are accepted. They have an online training session, and a lot of legal guidelines and disclosures to adhere to, and then they begin. Their moderations are reviewed, but mainly to ensure no misuse of moderation powers (gagging, deleting posts, etc). Since AOL does not log its members for what they type; AOL does not have the ability of logging CL's unless it is reported via the 'Notify AOL' feature. AOL is very strict with those accounts and if you misbehave you are gone from the program.
AOL does not pay the Community Leaders. They are compensated in the form of 1 free AOL account. So they are not AOL employees. However, AOL employees (paid) do oversee the program of AOL Community Inc., and they do their jobs well and this story doesn't (or atleast, shouldn't) reflect on their level of quality and professionalism on the service. As a result, AOL did fire that CL, and will be legally pursuing the issue.
I hope that clears some things up on that article. Feel free to comment.:)
You raise very good points, and I completely agree with the requirements.
At my job, my customer service management tool is logged for any account I access, change info, and update notes on the account. I dont have access into high-profile accounts like celebrities (ie, 50 Cent, Bill Gates, etc), I cant delete/change history. Only the actual represenatives in each department get the access they need. Every quarter they review everyone's access, and effectively change permissions. Best example; Technical Support doesnt need billing rights or bump rights; therefore they dont have it, I do;). I've also signed my soul away in about 13 NDA's and if I did use the info I see fraudulently I probably could be arrested for it; they mentioned that alot on training LOL.
I agree, I dislike companies with their entire staff being employed outside of here; however I'm okay with after hours support since they have opposite hours that we do. For places that REQUIRE no accents, (ie, 411) should not consider India as a viable option. I cant imagine if I called 911 and got an india rep.
I know its not the 'best' thing to do, but its good to test their security of your account. No matter what call center it is; account security is critical.
I tried to social engineer some acct info around to get account numbers and such and just general account info. My bank, luckily, just hung up since its apparent they are aware of the issue. As a result, I make deposits there. I've yet to try doing an ANI Fail, and have Telus make a call on behalf of a bank, however I expect to have no success
I believe with outsourcing, comes tracking programs for all account activity (for call centers), which logs all activity so it can be traced easily; where as before it was maybe less of an issue, so it wasn't a high priority.
On a side note; T-Mobile call center reps are not trained against social engineering, despite the Paris Hilton press coverage.
I use broadband, so dont flame me. I have AOL For Broadband for free, and I participated in the beta test of the "Internet Phone Service".
Its very reliable, and you get a free Linksys box to hook your telephone into. To make things easier, and less linksys boxes (I have 4 as it is now), I hooked up the TA into the Telephone Network Interface and put a label on it that says "Anti-Qwest Device". All phones work in the house on it. I performed one 911 test call, and took slightly longer to reach than a cell phone, but I was overall connected to the PSAP in a decent amount of time.
However, I dont know how much AOL plans to charge for it, I'm thinking ballpark like $15/mo. I get it for free though, so thats maybe why I like it more.;)
Slashdot Mirror
It only seems logical for a digital company like that to continue their cost-cutting efforts. Customer Service FTW!
Without Ads, the internet starts to cost more.
http://66.102.7.104/search?q=cache:NOS3HJhX9jcJ:ww w.merit.edu/mail.archives/nanog/msg11606.html+coge nt+level3&hl=en&client=firefox-a
If you read the article that the main point of boycotting IE is due to its lack of complying to standards - continually.
Believe me, I know. I like to educate users on being wary of downloads, encouraging the installation of antivirus and firwalls and have them check updates. The main reason why Spyware took off so well is due to MS Exploits that Microsoft failed to patch in due time. The MS Firewall is junk. The simple matter is - people don't care about learning. Most people just want a quick fix for things and dont want to prevent issues.
I already boycott IE, even in tech support calls I tell end users to check out www.getfirefox.com to prevent most spyware from being put on your system.
/ 417
:(
Microsoft has to know by now that web developers and power users want a standards compliant browser for once. Even with competition (Mozilla, Opera, Apple/Mac)... they still can't strive to meet the basic expectations.
Also, IE7 breaks Trillian, as evidenced by http://journals.aol.com/gregsblog/aimInfo/entries
I'd be wary of upgrading IE7 and Windows Vista.
Apps should be made via server side processes eliminating the end user's browser to be compatible.
AOL Cable and AOL DSL get *.aol.com and *.aol.net IP addresses
That sounds great, I agree. However, the mass populous would react like "why are you sniffing my connection?" and stuff like that. Even slashdotters would flame that to black piece of toast. Plus, what would indicate a zombied system... some ICMP data, some "unusual" activity, like P2P? Thats up to interpretation of both the transmitter and reciever of data. Then again, people would say AOL is the gestapo for filtering its connection.
Sends all kinds of info? AOL just polls the WMI service for troubleshooting data, just your basic info, nothing more. AOL uninstaller seems to work fine for me
People simply dont. People (on AOL) want things done for them, and they place themselves into this "zero-responsibility" phase so its even worse. AOL has free virus scan, firewall - the basics for being secure online - but the users dont get them. AOL isnt going to just put one there on their system.
AOL is a strong partner with Google and google adds to AOL services. I dont think they are viable "competitors" but just for metric purposes, its interesting to see google surpass a media conglomerate. Luckily, AOL switched to Google search results and dumped Yahoo/Inktomi from its SERPs
It can't be in oil because of the air-pressure hole in it. It cant be covered either.
I couldn't agree any more! 99.9% of all outbound spam is compromised accts. AOL is not profiting by any means of sending spam. n00b.
Well, I *am* customer service. So, well,I can say thats ineffective.
This doesn't resolve anything except make end users on both sides angry. This is very unproductive for both parties.
I can say this well, lets say I know how things work; they have automated spam blocking mechanisms to disable accounts who spam. A majority of accounts used for spamming are compromised, and that is the issue. Repeat offenders are terminated. No questions, and they can not reactivate. Spammers are just password cracking accounts and bulkmailing out of them. It sucks because a few people who do it ruin it for everyone!
I was helping a fellow member who couldn't CC 20 people on his biker club list. So, AOL is aware of the issue and trying their best to crack down on the bulk mail. Adding them to a blocklist WILL NOT stop bulk mail. This shakeup is not gonna "make AOL" doing anything.
Not all times our voice is the same. We all know we need to go to the pharmacy and get some meds in the middle of the night.
How will it be for people who can't speak into the card when they are sick.
This treads between usability, since I foresee a lot of problems. How about this; use a PIN for ALL credit and Debit transaction. Must be greater than 5 digits. Thats more security, but something we have adapted to use.
I posted this in my blog. So not sure of you are aware, but Slashdot is running a posting stating the headline that AOL Monitor Accused of Luring 15-Year-Old for Sex which is false in context if you read the article. Also I have some insight on how these "AOL Monitors" work; since people have very minimal perspective them besides faulty articles and rumors. First, to summarize the article: Some [woman] online is suing AOL because when she was 15 she was conversing with an AOL "Monitor" (Community Leader - CL), and she was considering meeting that fellow around the age of 17, but never did. Now she is 19 and suing for psychological damages somewhere around $250,000. The Community Leader was/is (not clearly disclosed, 23 years old, male). First, AOL has this program for tenured AOL members call Community Leaders so they can empower the service and its members on how to use the service, and to moderate chats, message boards and other "public" areas on AOL. The requirement is that they commit to about 3 hrs a week to this "community work" of talking with other members abnd also creat lively good discussions. As a reward; they get a free unlimited usage AOL account ($23.90 value). Most people who do this are usually either Retired people, or Stay-At-Home types who like the internet. Some of the featured areas are Kids Only (KO), and Teens (RED) where moderators regulate chats. They do a FINE job of protecting the community and KO chats. I see a number of accounts with these CL's scrambling passwords and leaving notes that 'this SN said their full name' or like 'this SN said their address'. Its not a bad thing, but helps parents talk to their kids about online safety. These CL's like what they do since it helps everyone have a safe, more rewarding online experience. The abuse comes in when there is a line of trust with these accounts. AOL does its best job of screening applicants for a CL position. They must have an AOL acct for a minimum of 1 year, with NO terms of service violations, and must pass a criminal background check. A majority of applicants are refused for various reasons and only the outstanding few are accepted. They have an online training session, and a lot of legal guidelines and disclosures to adhere to, and then they begin. Their moderations are reviewed, but mainly to ensure no misuse of moderation powers (gagging, deleting posts, etc). Since AOL does not log its members for what they type; AOL does not have the ability of logging CL's unless it is reported via the 'Notify AOL' feature. AOL is very strict with those accounts and if you misbehave you are gone from the program. AOL does not pay the Community Leaders. They are compensated in the form of 1 free AOL account. So they are not AOL employees. However, AOL employees (paid) do oversee the program of AOL Community Inc., and they do their jobs well and this story doesn't (or atleast, shouldn't) reflect on their level of quality and professionalism on the service. As a result, AOL did fire that CL, and will be legally pursuing the issue. I hope that clears some things up on that article. Feel free to comment. :)
You raise very good points, and I completely agree with the requirements.
;). I've also signed my soul away in about 13 NDA's and if I did use the info I see fraudulently I probably could be arrested for it; they mentioned that alot on training LOL.
At my job, my customer service management tool is logged for any account I access, change info, and update notes on the account. I dont have access into high-profile accounts like celebrities (ie, 50 Cent, Bill Gates, etc), I cant delete/change history. Only the actual represenatives in each department get the access they need. Every quarter they review everyone's access, and effectively change permissions. Best example; Technical Support doesnt need billing rights or bump rights; therefore they dont have it, I do
I agree, I dislike companies with their entire staff being employed outside of here; however I'm okay with after hours support since they have opposite hours that we do. For places that REQUIRE no accents, (ie, 411) should not consider India as a viable option. I cant imagine if I called 911 and got an india rep.
I know its not the 'best' thing to do, but its good to test their security of your account. No matter what call center it is; account security is critical.
I tried to social engineer some acct info around to get account numbers and such and just general account info. My bank, luckily, just hung up since its apparent they are aware of the issue. As a result, I make deposits there. I've yet to try doing an ANI Fail, and have Telus make a call on behalf of a bank, however I expect to have no success
I believe with outsourcing, comes tracking programs for all account activity (for call centers), which logs all activity so it can be traced easily; where as before it was maybe less of an issue, so it wasn't a high priority.
On a side note; T-Mobile call center reps are not trained against social engineering, despite the Paris Hilton press coverage.
I tried, it worked, but dropped the connection. hehe. Landline is better on dialup.
Powered by Level3 VOIP network. ;)
I use broadband, so dont flame me. I have AOL For Broadband for free, and I participated in the beta test of the "Internet Phone Service". Its very reliable, and you get a free Linksys box to hook your telephone into. To make things easier, and less linksys boxes (I have 4 as it is now), I hooked up the TA into the Telephone Network Interface and put a label on it that says "Anti-Qwest Device". All phones work in the house on it. I performed one 911 test call, and took slightly longer to reach than a cell phone, but I was overall connected to the PSAP in a decent amount of time. However, I dont know how much AOL plans to charge for it, I'm thinking ballpark like $15/mo. I get it for free though, so thats maybe why I like it more. ;)
This story has been a message brought to you by Yahoo!
Well, with the notion of Mac users bringing down the site, it seems we help with Slashdotting it. Its like a good DDoS attack. :-P