Phone calls. Junk mail. Monitoring. Your personal information is everywhere and the fact of the matter is that you need a technology to help remove you from all of the various databases. The Privacy Council was founded in 2007 to help protect consumers from unwanted marketing. Since then we've helped more than 30,000 households to take control of their personal privacy.
The site’s security team identified multiple access attempts by unauthorized individuals to access user data this week, the Bob Lord, director of information security, wrote on the Twitter blog on Friday afternoon. The company also uncovered “one live attack” and shut it down while it was still in progress moments later, Lord said.
Further investigation revealed that attackers were able to access a subset of user data, including usernames, email addresses, session tokens, and encrypted/salted passwords, belonging to approximately 250,000 users, Twitter admitted in the post. Lord did not provide any additional information about the security breach, nor did he say whether any of the exposed accounts had been illegally accessed.
“As a precautionary security measure, we have reset passwords and revoked session tokens for these accounts,” Lord wrote.
Amazon AWS hosting has been experiencing problems since about 1 PM EDT. This is impacting many sites including NetFlix, Flipboard and Yovia. There is no word yet on when this will be fixed. For more information you should visit Amazon’s Server Status board.
The FTC (Federal Trade Commission) is now offering a $50,000 prize to whomever can come up with the best solution to stop illegal political Robo Calls. Applications start on October 25 and the agency is also saying whoever wins will become a “National Hero”.
You can learn more or tune in to Twitter on October 5 to learn more about the challenge.
Alert: Godaddy is reporting mass outages. Hacker group Anonymous is taking credit. More information to be provided.
The National Do Not Call Registry, or the Registro Nacional No Llame, as it is called in Spanish, is the official centralized list service that was created by the Federal Trade Commission after review of telemarketing practice. It was developed as a service for consumers to add their business or household phone number to a list that is shared by major telemarketing calls. The purpose is to help limit the calls you receive. There is no cost and once added, your phone number remains on the DO NOT CALL list. Here is some information directly from the FTC’s website.
The National Do Not Call Registry gives you an opportunity to limit the telemarketing calls you receive. Once you register your phone number, telemarketers covered by the National Do Not Call Registry have up to 31 days from the date you register to stop calling you.
The National Do Not Call Registry is managed by the Federal Trade Commission (FTC), the nation’s consumer protection agency. It is enforced by the FTC, the Federal Communications Commission (FCC), and state law enforcement officials.
The registry was created to offer consumers a choice regarding telemarketing calls. The FTC’s decision to create the National Do Not Call Registry was the culmination of a comprehensive, three-year review of the Telemarketing Sales Rule (TSR), as well as the Commission’s extensive experience enforcing the TSR over seven years. The FTC held numerous workshops, meetings, and briefings to solicit feedback from interested parties and considered over 64,000 public comments, most of which favored creating the registry. You can review the entire record of the Rule review at
Telemarketers covered by the National Do Not Call Registry have up to 31 days from the date you register to stop calling you.
After you register, your phone number will show up on the registry by the next day. Telemarketers have up to 31 days to get your phone number and remove it from their call lists.
You can delete your phone number only by calling toll-free 1-888-382-1222 from the telephone number you want to delete. After you contact the registry to delete it, it will be removed from the National Do Not Call Registry by the next day. But telemarketers have up to 31 days to access information about your deletion and add your number back to their call lists, if they choose to.
No, but you can verify that your number is on the registry online at www.donotcall.gov or by calling the registry’s toll-free number (1-888-382-1222) and following the prompts for verifying that your number is on the registry.
No. The FTC does not allow private companies or other such third parties to register consumers for the National Do Not Call Registry. Websites or phone solicitations that claim they can or will register a consumer’s name or phone number on the National Do Not Call Registry — especially those that charge a fee — are almost certainly a scam. Consumers may register directly, or through some state governments, but never through private companies. For consumers, the National Do Not Call Registry is a free service of the federal government.
We collect your phone number and store it in the National Do Not Call Registry so that telemarketers and sellers covered by the FTC’s rules can remove your phone number from their call lists. Telemarketers are required to search the registry every 31 days and delete from their call lists phone numbers that are in the registry. Phone numbers in the registry also may be shared with law enforcement to assure compliance with federal and state law.
If you contact us via the Internet, we also collect your email address to confirm your registration request. We will store your email address in a secure manner, separate from your telephone number. We will not share your email address with telemarketers.
Yes, you may place your personal cell phone number on the National Do Not Call Registry. The registry has accepted cell phone numbers since it opened for registrations in June 2003. There is no deadline to register a home or cell phone number on the Registry.
You may have received an email telling you that your cell phone is about to be assaulted by telemarketing calls as a result of a new cell phone number database; however, that is not the case. FCC regulations prohibit telemarketers from using automated dialers to call cell phone numbers. Automated dialers are standard in the industry, so most telemarketers don’t call consumers on their cell phones without their consent.
You should register only your own telephone numbers.
You may register up to three telephone numbers at one time on the National Do Not Call Registry website. You will receive a separate confirmation email for each number you wish to register online. You must open each email and click on the link in each one to complete the registration process. If you have more than three personal telephone numbers, you will have to go through the registration process more than once to register all of your numbers. There is a limit on the number of phone numbers you can register in this manner.
You can register only one phone number each time you call the National Do Not Call Registry, and you must call from the phone number you wish to register.
You will get an email for each number you register online. You need to open each email and click on the link in each email within 72 hours to register those numbers.
The National Do Not Call Registry is only for personal phone numbers. Business-to-business calls and faxes are not covered by the National Do Not Call Registry.
Telephone numbers on the registry will only be removed when they are disconnected and reassigned, or when the consumer chooses to remove a number from the registry.
No. You can if you would like to, but the system will automatically remove most numbers that are disconnected and reassigned.
If your number is disconnected and then reconnected, you may need to re-register. In addition, there are actions that you or your telephone company might take that could cause your registered phone number to become unregistered — even if your service has not been interrupted (such as changing calling plans or other services, or changing the billing name on the account.) To verify that your number is in the Registry, go to www.donotcall.gov or call 1-888-382-1222 (TTY: 1-866-290-4236). Each time you re-register, telemarketers will have 31 days to take your number off their call lists.
If the phone companies change the three-digit area code for your home or mobile phone number, you do not have to re-register it with the National Do Not Call Registry. The number with the new area code will be registered for you during the 90-day period when both the old and new area codes work. This is known as the Permissive Dialing Period.
No. You do not need to delete the registration of your phone number with the old area code. An automated process will remove it after 90-day Permissive Dialing Period.
When you use the registry’s website to put a phone number on the National Do Not Call Registry, we collect your email address to confirm your request. We will send you an email and you will need to click on the link in the email within 72 hours to finalize your registration. We also collect your email address when you request to verify your registration online so that we can email you a response to your verification request. We will store your email address in a secure manner, separate from your telephone number. We will not share your email address with telemarketers.
No. The online registration process requires an active email address. If you register online, we will send you an email message with a link in it. You need to click on the link in the email within 72 hours to finalize your registration. If you do not have an email address, you can register by phone
No. The email address is a one-way mail service. It cannot accept incoming emails. You must click on the link within the email within 72 hours to finalize your registration.
Yes, you will be able to use your new email address to verify your phone number online.
When you call to register a phone number, you are asked to enter the number you are calling from. The system tries to match the number you enter to “Automatic Number Identification” or ANI, which is like Caller ID for the telephone network. A small percentage of U.S. phones do not have ANI. If your phone doesn’t, the system will have trouble locating your phone number. You can register your phone number on the National Do Not Call Registry website at www.donotcall.gov.
To register, you must call from the phone you want to register. For example, you cannot register your home phone number by calling from work.
Also, people in certain communities — such as senior living centers or university residences — have phone numbers that are hidden by a PBX (private branch exchange) telephone system and cannot be matched by the National Do Not Call system. If you live in such a community, you can register your phone number on the National Do Not Call Registry website atwww.donotcall.gov.
You may not be able to click on the link in your email from Register@donotcall.gov, or it may take you to a page that says “Registration Incomplete.” You can complete your registration by using the “cut” and “paste” functions to insert the link in the email into the “address” line on your Web browser. You must cut and paste the entire link. It is very long — possibly more than one line of text. You cannot re-type the link.
No. Placing your number on the National Do Not Call Registry will stop most telemarketing calls, but not all. Because of limitations in the jurisdiction of the FTC and FCC, calls from or on behalf of political organizations, charities, and telephone surveyors would still be permitted, as would calls from companies with which you have an existing business relationship, or those to whom you’ve provided express agreement in writing to receive their calls. However, if you ask a company with which you have an existing business relationship to place your number on its own do-not-call list, it must honor your request. You should keep a record of the date you make the request.
Political solicitations are not covered by the TSR at all, since they are not included in its definition of “telemarketing.” Charities are not covered by the requirements of the national registry. However, if a third-party telemarketer is calling on behalf of a charity, a consumer may ask not to receive any more calls from, or on behalf of, that specific charity. If a third-party telemarketer calls again on behalf of that charity, the telemarketer may be subject to a fine of up to $16,000 .
If the call is really for the sole purpose of conducting a survey, it is not covered. Only telemarketing calls are covered — that is, calls that solicit sales of goods or services. Callers purporting to take a survey, but also offering to sell goods or services, must comply with the National Do Not Call Registry.
No. By purchasing something from the company, you established a business relationship with the company. As a result, even if you put your number on the National Do Not Call Registry, that company may call you for up to 18 months after your last purchase or delivery from it, or your last payment to it, unless you ask the company not to call again. In that case, the company must honor your request not to call. If they subsequently call you again, they may be subject to a fine of up to $16,000 .
An established business relationship with a company also will be created if you make an inquiry to the company, or submit an application to it. This kind of established business relationship exists for three months after the inquiry or application. During this time, the company can call you.
If you make a specific request to that company not to call you, however, then the company may not call you, even if you have an established business relationship with that company. You should keep a record of the date you make the request.
Yes. Any telemarketers calling U.S. consumers are covered, regardless of where they are calling from. If a company within the U.S. solicits sales through an overseas professional telemarketer, that U.S. company may be liable for any violations by the telemarketer. The FTC can initiate enforcement actions against such companies.
Yes. If you give a company your written permission to call you, they may do so even if you have placed your number on the National Do Not Call Registry.
Yes. Even if you do not register with the National Do Not Call Registry, you can still prohibit individual telemarketers from calling by asking them to put you on their company’s do not call list.
The National Do Not Call Registry requirements are at least as stringent as most state laws. Most unwanted telemarketing calls will be covered by the National Do Not Call Registry. States also can continue to enforce their laws, which will not be limited by the FTC. However, the FCC’s requirements impact some state laws. For information on the FCC’s rule, visit www.fcc.gov.
If your number has been on the National Do Not Call Registry for at least 31 days and you receive a call from a telemarketer that you believe is covered by the National Do Not Call Registry, you can file a complaint at the registry’s website atwww.donotcall.gov or by calling the registry’s toll-free number at 1-888-382-1222 (TTY: 1-866-290-4236). You may also file a complaint if you received a call that used a recorded message instead of a live person (whether or not your number was on the Registry).
You can file your complaint on the registry’s website, www.donotcall.gov, using the File a Complaint page. You must provide the date that the company called you and the number that was called and respond to a question asking if the call was a prerecorded message. You may provide your name and address, but this information is not required for you to submit a complaint. You also may call the registry’s toll-free number 1-888-382-1222 (TTY: 1-866-290-4236).
Do not call complaints will be entered into the FTC’s Consumer Sentinel system, a secure online database available to more than 1,000 civil and criminal law enforcement agencies. While the FTC does not resolve individual consumer problems, your complaint will help us investigate the company and could lead to law enforcement action.
If you have questions or complaints regarding the Do Not Call Registry, please contact the FTC by email firstname.lastname@example.org, or by mail at:
National Do Not Call Registry
Attn: DNC Program Manager
Federal Trade Commission
600 Pennsylvania Avenue, N.W.
Washington, DC 20580
We have been hearing mixed rumors about whether or not Anonymous hacked Sony’s Playstation network and stole 50 million people’s information.
It is our belief that there is a file circulating containing people’s logins and passwords, however at this time it is unclear if their was a breach.
Sony says no on the matter. Regardless, it’s a great time to go reset those passwords.
The introduction, in the US Senate, of the Cybersecurity Act of 2012 (S 3414), takes the place of Lieberman-Collins Cybersecurity Act (S 2150). It calls for a National Cybersecurity Council, which would be chaired by the Secretary of Homeland Security.
If enacted, crucial privacy concerns would be addressed, with the council working with the operators and owners of critical infrastructures, to minimize cybersecurity risks.
Cybersecurity practices have been under fire, while the ACLU and private individuals have been questioning the role the Federal government would play, as presented in the previous bill, which included mandatory following of agency-enforced standards. In the new bill, these would be optional.
The “toned-down” language of the new bill may help it pass, as support for the initial bill had been fading, especially among Republicans. It’s still not a done deal.
Within the language of the bill, government agency programs for certification remains an area of concern, with how much power the council ultimately has being in question. Questions arise, with the possible regulating of a critical infrastructure sector by a federal agency.
With regard to self-certification, will enforcement be “loose,” as has been suggested by a PDF summary of the bill? Just how much power federal officials will have, remains to be seen.
blog sponsored by The Privacy Council
As stories of Apple’s in-app security issues continue, due to the hacking and resulting YouTube videos from Russian developer Alexey V. Borodin, questions regarding the adequacy of current transport layering and their cryptographic protocols seem in order. If high-tech entities are unable to stop supposedly secure information from being compromised, how can individuals assume their personally identifiable information (PII) is secure? Of course, it appears not to be.
The Secure Sockets Layer (SSL), originated by Netscape, affords users a cryptographic protocol when communicating on the web. Additionally, there’s Transport Layer Security (TLS) and Transport Layer Protection (TLP). Borodin appears to have infiltrated in-place layers of security and manipulated digital certificates, in order to avoid paying for in-app purchases. He then produced criminally instructional videos, which he offered on YouTube, showing others how he did it. Even after the blocking of his IP address, by Apple, and the successful removal of his initial video on YouTube, Borodin has continued his operation, utilizing an international server, somewhere outside of Russia.
An immediate need for an upgrading of website security seems obvious.
What implications are there for individuals?
Note: Beyond your password, hackers seeking to steal an identity, look for date of birth, available addresses and phone numbers, all of which are readily accessible on the web. It is recommended that passwords be changed on a regular basis. Protect other personally identifiable information, by not openly sharing it on the global expressway of information.
blog sponsored by The Privacy Council