Monthly Archives: June 2014

Have You Been Bluesnarfed?

Posted on by
45

I recently became aware of a couple of scams that can significantly hurt your wallet because the end result is a bunch of unauthorized, but legitimate (from the phone company’s perspective) charges on your cell phone bill.  The prevention of these scams is extremely simple and non-technical.

Scam 1:  A scammer hacks into the Bluetooth connection coming from your phone and downloads your entire address book.  They then add a 1-900 premium relay number as a prefix to each of the stored phone numbers in your address book and uploads the modified contacts back to your phone…all in the matter of seconds.

The result?  You call Mom, and your phone simply displays “Calling Mom.”  What’s really happening is that your phone call to Mom is being relayed through a 1-900 premium pay-per-minute “service” and you owe the phone company thousands of dollars by the end of the month.  You’ve been bluesnarfed!

Prevention:  Call your cell phone company and disallow premium phone calls.

Scam 2:  A scammer sits in the back of a crowded movie theater and hacks into your cell phone via Bluetooth while it is tucked safely away in a purse or pocket as to not disturb others.  A second scammer sits outside and sells reduced cost minutes to a crowd of international visitors who would like to speak to their family.  Unbeknownst to you, they are doing so via your cell phone.

The result?  You owe the phone company big for almost 2 hours of international phone calls.

Prevention:  Call your cell phone company and disallow international phone calls.

I took the preventive steps listed and although the customer service rep at my cell phone carrier initially told me it was not possible, after I pushed them they “figured out” how to disable international and premium outbound phone calls on my line.  Although newer phones make these scams harder to execute, the increased range of Bluetooth makes your “attacker” radius larger than ever before.  Besides, it was a 15 minute phone call and may have saved me thousands of dollars.  I hope you take the same precaution!

Some other general recommendations regarding Bluetooth security:

  1. Turn off discovery mode when not actively pairing a device.
  2. Reset default Bluetooth pins to be longer and unique.
  3. Turn off Bluetooth when not in use.
  4. Only pair devices in trusted and non-crowded locations.

Thanks for reading and don’t forget to subscribe!

Big Data: Somebody’s Watching You…

Posted on by
7

It seems as if privacy advocates are starting to get some momentum lately.  There are countless headlines regarding privacy and the missing ability to opt-out of big data collection efforts.  CNN covered this issue in an episode of Inside Man recently.

One marketing company, Acxiom, has decided to publish a website that allows you to review a summary of the data they have collected about you.  That is so nice of Big Data, isn’t it?  I thought so.  However, there are a few caveats worth mentioning.

I went through the process and I couldn’t help but find it questionable.  In order to review the personal data about me they have accumulated, I had to provide a ton of personal information.  You know…to “verify” that the data I am requesting is actually mine.  I think that process makes a lot of sense, Big Data, if you weren’t already selling it to strangers.  Call me a skeptic if you wish, but it kind of makes me question whether or not there are ulterior motives, in addition to your never ending desire to be nice to me.  Am I just giving more personal information to a company who wants my personal information?  What are you up to, Big Data?

I must say that the website is aesthetically pleasing and the report output is definitely interesting.  It does give you some insight into the information marketers have and want about you.  The data about me was inaccurate in some cases.  Don’t worry, though!  Big Data gives you an opportunity to correct information that is not accurate so marketers can better target you.  Thanks?

This website also allows you to opt-out…if you provide all variations of your name, email addresses, phone numbers and mailing addresses.  Uhhhhh….don’t you know that information already, Big Data?

Last, but not least, the data presented is done so at a very high level.  I’m sorry, but there is just no chance that this is all the information a big data company has collected about me.  It is just impossible.  Either this company is a weak one, or they are giving you just the information they feel you need to review.  I’m not so sure you are being forthcoming with me, Big Data.

It is still an interesting exercise.  Check it out if you dare!

Thanks for reading and don’t forget to subscribe!