tag:blogger.com,1999:blog-5388115022531534533.post4815129711259335122..comments2024-03-07T21:21:45.209+11:00Comments on /dev/null - ramblings of an infosec professional: Vodafone Privacy ScandalJarrodhttp://www.blogger.com/profile/09705073585945953338noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-5388115022531534533.post-80816130711419863682011-01-27T15:44:14.874+11:002011-01-27T15:44:14.874+11:00As you have mentioned. Vodaphones' indiscreti...As you have mentioned. Vodaphones' indiscretion is merely the tip of the iceberg when it comes to privacy/security infractions.<br />Regulatory compliance is still in its infancy in Australia and even when adopted by large organisations it still suffers from in-house sanitation where minor infractions could impact company shareholder value.<br /><br />Does anyone recall the last public release of credit card fraud reports from their local bank?<br />How about a certain Aussie telco in their haste to offshore technical support releasing confidential details and records of a certain state government in Australia. No doubt these and many more instances of a similar nature are hosed in-house by Senior Management.<br /><br />Long live Wiki Leaks!Unknownhttps://www.blogger.com/profile/15691440398390899563noreply@blogger.comtag:blogger.com,1999:blog-5388115022531534533.post-81097368583165109632011-01-12T12:05:49.569+11:002011-01-12T12:05:49.569+11:00Seems that Vodafone has got more things wrong than...Seems that Vodafone has got more things wrong than only privacy:<br /><br />- One day I stopped receiving Vodafone mobile phone bills. Didn't notice it as I was quite busy until one day I got an SMS from Vodafone telling me that I should call them to organise the payment.<br /><br />- I call them and get to talk to someone (presumably in India) who informs me that I have been notified and I have given consent to email billing. I am 100% certain I have never talked email billing with anyone. She also tells me that I should have received an email bill (which I never have even if the email address in their database appears correct). Meanwhile, she keeps insisting that there is absolutely nothing wrong with their system and that I have definitely received the email.<br /><br />- Of course, I won't pay anything without a bill so I won't just give her my credit card details to pay an arbitrary sum.<br /><br />- When I ask her to resend the bill(s) she says she can't use my email address because it's not validated (therefore, I also never have received the bills which I have absolutely, definitely received according to her) and I have to respond to the validation email (which I also never received) before I can receive my bills.<br /><br />- After a while of arguing, she agrees to send me a new validation email that I should receive in 48 hours (that's a long time for an email!) which I of course never receive (it's not in the spam folder, either).<br /><br />- In the Vodafone shop, I get a printout of my bill and I can pay it on the spot. The shop attendant - a very helpful and nice person, by the way - also disables the email billing option so now it's exciting to see whether I will again start receiving paper bills.Anonymousnoreply@blogger.com