[130579] in North American Network Operators' Group
Re: Scam telemarketers spoofing our NOC phone number for callerid
daemon@ATHENA.MIT.EDU (Dan White)
Wed Oct 6 10:41:35 2010
Date: Wed, 6 Oct 2010 09:37:35 -0500
From: Dan White <dwhite@olp.net>
To: Matthew Huff <mhuff@ox.com>
In-Reply-To: <483E6B0272B0284BA86D7596C40D29F9E2C7B8076F@PUR-EXCH07.ox.com>
Cc: "' \(nanog@nanog.org\)'" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 06/10/10 10:29 -0400, Matthew Huff wrote:
>We have recently gotten complaints of harrassing and high pressure sales scams orginating from our NOC's phone number. Since the number is a virtual number on the PBX, it can't be used for outgoing calls. I assume the scammers choose the number from the whois db. Anyone else seen this happening? Any suggestions on whom we should contact?
Could be Caller ID spoofing. If so, have a recipient of the call perform a
trap and trace to find the originator of the call (doing so may require you
to file a police report to find who's making the calls, depending on your
jurisdiction).
If your PBX is SIP based, you might be victim of a SIP registration hijack,
which are on the rise, based on traffic we've been seeing in our network.
--
Dan White
