Feeds

IP phone man's Vonage hell

Number carousel let user see other punters' credit details

Choosing a cloud hosting partner with confidence

Vonage has apologised after coding slip-ups caused one of its customers to be billed 80 times - at a cost £5.99 per occasion - for changes to accounts that didn't belong to him.

Reg reader and UK-based small businessman Tom came to us with his problems last week after he found out he was able to see other customers' account details and credit card information when he logged into his Vonage account. The IP telephony firm had changed his number so many times that his Linksys router had given up to the ghost. To add insult to injury, Tom discovered he'd been billed scores of times for changes to other people's accounts.

Other customers were subsequently assigned numbers temporarily given to Tom. Another UK-based customer, Jeremy, was assigned a virtual number Tom had paid for, as a way of transferring calls when the latter moved business premises. Last week, Jeremy began receiving other peoples' calls. When Jeremy logged onto his account online, he saw Tom's details and contacted him.

Jeremy told us that unlike Tom he hadn't suffered much inconvenience as a result of the problem. "I may have missed a few calls so it's a little inconvenient, but I conduct most of my business online via email," Jeremy told El Reg

Tom told us he'd been unable to receive voice mails for 18 months since becoming a Vonage customer, a problem he attributes to the phone number merry-go-round he's been forced to endure. The problem peaked last week when he was able to see one of five other customer's personal and billing details at random when he logged into his account.

Since reporting his problems to Vonage, the IP telephony firm has sorted out the mess and Tom says he's now able to login and collect voicemail for the first time in 18 months. "I went to Vonage for the convenience of using the service when I go abroad and as a way of reducing my phone bill. In the end, I'd have been better to stay with BT," Tom told El Reg.

Tom said Vonage reps in New Jersey told him a scripting error was the root cause behind why he was assigned continuously changing numbers. Numbers temporarily assigned to him were reissued, which goes some way towards explaining why he could see other people's details when he logged onto his Vonage account, while not exactly getting to the bottom of the problem.

In a statement prompted by Register inquiries, Vonage said the mix-up was an isolated problem, for which it apologised.

"Vonage has conducted a thorough investigation of the issues raised. We found that in this customer's circumstance there was a temporary problem in the transfer of voicemail facilities following a change of number, due to an upgrade of the voicemail service, for which we apologise. While we cannot publicly discuss an individual's account details and usage, we can reassure Vonage customers that this was a unique and isolated situation. Vonage takes security extremely seriously, and appreciates the vigilance of this customer in raising their concern."

If you've had security problems with Vonage services this month we'd like to hear about your experiences. ®

Security for virtualized datacentres

More from The Register

next story
TEEN RAMPAGE: Kids in iPhone 6 'Will it bend' YouTube 'prank'
iPhones bent in Norwich? As if the place wasn't weird enough
Consumers agree to give up first-born child for free Wi-Fi – survey
This Herod network's ace – but crap reception in bullrushes
Crouching tiger, FAST ASLEEP dragon: Smugglers can't shift iPhone 6s
China's grey market reports 'sluggish' sales of Apple mobe
Sea-Me-We 5 construction starts
New sub cable to go live 2016
New EU digi-commish struggles with concepts of net neutrality
Oettinger all about the infrastructure – but not big on substance
PEAK IPV4? Global IPv6 traffic is growing, DDoS dying, says Akamai
First time the cache network has seen drop in use of 32-bit-wide IP addresses
EE coughs to BROKEN data usage metrics BLUNDER that short-changes customers
Carrier apologises for 'inflated' measurements cockup
Comcast: Help, help, FCC. Netflix and pals are EXTORTIONISTS
The others guys are being mean so therefore ... monopoly all good, yeah?
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.