|
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Are we on the right track with this campaign thingy?
Put yourself in the shoes of Joe Public. You know nothing at all about Phorm. You see a poster implying that your days of 'hiding' are over and you have nothing to 'protect' you. Isn't it a bit victim? And what do you do once you become aware that your 'hiding' days are over? Do you just get mad? Frustrated? Scared? Where do you turn for help? We're not criminals. We would be the criminalised if deployment goes ahead. Needs more thought I reckon. |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
|
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
The Gadget show, whether 'geeky' or not, was great for exposure. The daily tabloids and other mainstream programs are the best way... the problem is how to get them to take up the story? |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
Have you considered adding the recent opinion from the EU? Edit: With a link to http://www.p2pnet.net/story/16046 |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
Phorm have been careful to say they specifically exclude these because they know it will make a big chunk of Joe public angry/worried. But they are not going to ignore half the net for long. I don't quite know how we would use this, but given the specific exclusions, phorm must know it would be dangerous to them. Anyone know what the original reason for the introduction of premium rate 'phone numbers was? (I don't). What are they used for now? Anyone know much about how Kent's old spyware stuff worked? Did it involve pron and gambling? If it did, his ISPyware won't ignore it for long. ---------- Post added at 19:54 ---------- Previous post was at 19:40 ---------- Quote:
http://www.inphormationdesk.org/ The idea behind that site is to be simple as well, but it contains quite a bit of further information for those interested. It avoids the use of a forum as well. |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
|
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Over on BT Beta forums we were assured recently by our forum moderator that webwise.bt.com was not a phishing site.
I have been trying to submit an enquiry via the webwise.bt.com/contact.php page, which appeared to be broken - but it seems although the confirmation page never showed up an email did get through. I got a reply today - the body text was the usual BT Webwise spin, and the headers are here (edited to protect the innocent) X-Apparently-To: ******-webwise@yahoo.co.uk via 87.***.***.61; **, ** May 2008 **:30:45 +0000 X-Originating-IP: [217.32.164.151] Authentication-Results: mta163.mail.ukl.yahoo.com from=bt.com; domainkeys=neutral (no sig) Received: from 217.32.164.151 (EHLO smtp4.smtp.bt.com) (217.32.164.151) by mta163.mail.ukl.yahoo.com with SMTP; **, ** May 2008 **:30:43 +0000 Received: from E03MVA2-UKBR.domain1.systemhost.net ([193.113.197.106]) by smtp4.smtp.bt.com with Microsoft SMTPSVC(6.0.3790.1830); **, ** May 2008 **:30:43 +0100 X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: FW: BT.webwise.com Contact Request Date: **, ** May 2008 15:30:43 +0100 Message-ID: <***********@**********2-UKBR.domain1.systemhost.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: BT.webwise.com Contact Request Thread-Index: ********3L4La2sQ69Q0WaQ3lWM+7bAgAia1zL References: <********.************@ww3.phorm.com> From: <bt.webwise.help.desk@bt.com> To: <******@*******> X-OriginalArrivalTime: ******** (UTC) FILETIME=[*************] I'm a bit puzzled by the References: line References: <*********.*******@ww3.phorm.com> and wondering what that was doing in a reply to a contact form email made via what we were assured by an official BT forum moderator, was a genuine non-phishing site. In fact we were roundly told off for reporting the site as a phishing site and told to stop it. I did a lookup on www3.phorm.com and got this: Registrant: Phorm, Inc. 264 W. 40th St., 16th Floor New York, New York 10018 United States Registered through: GoDaddy.com, Inc. (http://www.godaddy.com) Domain Name: PHORM.COM Created on: 29-Apr-00 Expires on: 29-Apr-09 Last Updated on: Administrative Contact: Cote, Chris chris.cote@phorm.com Phorm, Inc. 264 W. 40th St., 16th Floor New York, New York 10018 United States 2123592030 Fax -- Technical Contact: Clark, Allan allan.clark@phorm.com Phorm, Inc 264 W40 Street 16th Floor New York, New York 10018 United States 2123592030 Fax -- Domain servers in listed order: NS1.PHORM.COM NS2.PHORM.COM I'm not up on the technicalities of headers so I would appreciate some advice before I take this further. |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
To my everlasting shame, when I was young I worked for a publicity company, but I'm better now. I've also maintained an academic interest in psychological warfare since then, so if push comes to shove (in this case) I am prepared to assume the morals of a sewer rat, for the greater good. |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
on the brief news bulletin on BBC 1 just before 8 O'clock they mentioned how they got hold of a fake driving licence under the name of the Home Secretary, Jacqui Smith.
http://news.bbc.co.uk/1/hi/uk/7424238.stm Response from the Government Quote:
|
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
Quote:
Quote:
A lookup on what the "References" header is reveals this: Quote:
Angry does not even begin to describe how this makes me feel, especially given that BT have out and out lied in their response to this issue. Alexander Hanff |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
The moderator response when we had our phishing row about webwise.bt.com on Beta forums was http://www.beta.bt.com/bta/forums/me...ID=23304#23304 "Before you start to send emails to the moderators and our abuse team about this, http://webwise.bt,com isn't a phishing site. It's merely a part of BT.com that is hosted on a different set of servers, much like bt.custhelp.com which is hosted on Right Now's servers in California. Right Now's servers also handle all of the traffic in the "Contact Us" section of BT.com just like the form on the Webwise site and with a similar level of security for handling details like your account numbers. Sending us lots of emails reporting this will delay the abuse team from dealing with genuine reports of phishing sites so I'd appreciate it if you didn't. Thanks" I've emailed him directly to ask for an explanation and said that I submitted the form after his reassurance that this was an internal site and that if my details have been compromised then I hold BT responsible on the basis of his official advice. This is now the second bit of documented evidence we have of communications through that site ending up in Phorm's hands. What next? - I'm all fired up and ready to go! |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Just make things a little more interesting, click this link in your browser:
http://ww3.phorm.com/ Hmmmm Alexander Hanff ---------- Post added at 20:44 ---------- Previous post was at 20:33 ---------- Quote:
1. You fill in the contact form on www.webwise.bt.com (a server hosted in the US off the BT core network on an IP address recently associated with Phorm). 2. The script behind that form seems to be sending the form data to ww3.phorm.com. 3. ww3.phorm.com appears to be then sending that data to BT via email, which explains the reference header. If anyone has anything to add, please feel free. Alexander Hanff |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
If not, what would be left on the server in the way of logs etc? I'm just trying establish if BT/Phorm can argue that no data was collected/kept by phorm. They can probably argue it's not phishing because BT themselves must have pointed the URL towards that site. Having said that, BT could have pointed it towards the information page, Phorm could have added the 'contact us' bit by themselves. That would be phishing. Perhaps BT need to confirm that they authorised Phorm to collect the 'contact us' information? |
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
|
Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]
Quote:
I was disappointed with the BBC 24 and BBC news web site coverage, it felt distant and as if the BBC felt it had to cover the story but didn't really see anything wrong with Phorm. The Click! presenter emphasised the word "some", when introducing the segment and saying "some" people had issues with Phorm - the emphasis made me think that the BBC were saying "some" as in these are loony people that the BBC are distancing themselves from. |
| All times are GMT +1. The time now is 21:17. |
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2025, vBulletin Solutions Inc.
All Posts and Content are © Cable Forum