Feeds

Pizza fraudsters get a slice of the action

Telephone redirect ruse hits California

Beginner's guide to SSL certificates

US fraudsters were able to pose as a pizza outlet after a credulous AT&T service rep redirected calls from cooks to crooks.

Con-men claiming that the phone at pizza outlets was malfunctioning persuaded the rep to set in place a call forwarding request to a number of their choosing. AT&T failed to make any checks.

As a result, orders for pizzas were fielded by fraudsters, who predictably insisted advanced payments needed to be made by credit card. Payment details were subsequently used to make fraudulent internet purchases under the name of unsuspecting pizza customers.

The beauty of this simple ruse is the potential marks would have no reason to be suspicious. After all, they initiated the orders.

News of the ruse came after an internal memo fell into the hands of reporters from the San Francisco Chronicle. John Britton, an AT&T spokesman, confirmed the authenticity of the memo.

Two incidents of the scam have been reported in southern California, but it's unclear if the ruse has been replicated elsewhere. The incidents that AT&T knows about only emerged after complaints from pizza parlours that their phones had gone dead.

"If someone doesn't call us, we wouldn't know about it," Britton told the San Francisco Chronicle. "After learning of this, we immediately took action to warn employees to be extra cautious when dealing with any requests for call forwarding."

Nobody has been arrested over the scam and it's unclear how much money has been defrauded.

Meanwhile, AT&T is not saying what new security measures it has instituted to frustrate the con, beyond saying it has warned other operators and that subsequent attempts to pull off the con have failed. "We had some guidelines in place that we believe were effective," Britton said. "Now we have extra precautions." ®

Internet Security Threat Report 2014

More from The Register

next story
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
Why did it take antivirus giants YEARS to drill into super-scary Regin? Symantec responds...
FYI this isn't just going to target Windows, Linux and OS X fans
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
'Regin': The 'New Stuxnet' spook-grade SOFTWARE WEAPON described
'A degree of technical competence rarely seen'
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
prev story

Whitepapers

Go beyond APM with real-time IT operations analytics
How IT operations teams can harness the wealth of wire data already flowing through their environment for real-time operational intelligence.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
How to simplify SSL certificate management
Simple steps to take control of SSL certificates across the enterprise, and recommendations centralizing certificate management throughout their lifecycle.