What fake service websites look like

 

In this screenshot, you will notice that the two Os of Whirlpool are actually zeros. This means that a web crawling program that looks for mentions of the brand is likely to miss this one. 

This is very likely a fake service website. 

How GoDaddy made my life hell aka List of spammers you don't want to give business to

Some months ago, the Godaddy customer database of people who have bought domain names was sold. 

A direct consequence of that was that every day, I started getting 8-10 calls asking me if I wanted help in getting a website made. 

When I asked them how they got my number, they all mentioned that they got it from GoDaddy. 

I made the BIGGEST mistake of my life buying something from GoDaddy. 

These companies do not even do the basic due diligence of finding out if a number is DND before spamming a person at all hours, in the hospital, on weekends. My life has been made hell over the last many months because of GoDaddy. 

The callers knew my name, and knew that i have bought a domain name from GoDaddy. They all told me that they got the contact information from GoDaddy. - This means that this was not a leak. GoDaddy sold this database and the buyers had the confidence to call and tell me that you have bought a domain from GoDaddy, can we help you make a website. 

Thank you, GoDaddy, for sparing the hackers some work and leaking your own customer database to spammers. 

#GoDaddyIsPureHell #ExperienceSharing 

This is the list of companies that have spammed me by violating DND. 

Infocrate Technologies - He was also blatant enough to say please add me to the database of spammers. 

Magicware services noida sector 66 

Pagetraffic.com 

Gowave Idea Software Development Company; Khushboo; West Bengal Durgapur; 

Auysh Softar Ranchi 

Vistory IT Solutions Noida; CEO- Varun Kumar

Two Thoughts on Security

 2 thoughts on security.

1. When a platform provides a service, it is a safe assumption to make that the platform is secure and will be kept secure. 2FA is essentially the platform shifting the responsibility of security from itself to the customer. It is also putting the customer's personal devices at risk, because now the compromise requires the use of the personal email / phone no. It is unethical and impractical because, as we know, customer accounts and devices are compromised a lot quicker than enterprise IT infra. Platforms need to be accountable to customers and provide a mandatory RCA for every account breach.

2. Today, an appliance broke down in our house. Since it was still covered by warranty, I took the precaution of finding the company care center and calling them. The person said that I would get my request no. after the call disconnects, and the service center will call me within two hours.

The subsequent conversation went like this:

Me: How will the person calling authenticate themselves?

She: They will call you within two hours ma'm.

Me: Yes. But how will I know that the person calling me is from Whirlpool? Will they give me the request ID?

She: Can I please place your call on hold?

That was when I realised that while service centers are a MAJOR source of financial frauds today, companies have not even thought of a way to protect themselves.

When a customer is defrauded thanks to fake customer care numbers, it is the brand that suffers. But when one reaches a genuine customer care number and then finds that obvious security flaws have not been plugged, one is quite nonplussed.

Book Review: The Spy who went into the Cold by Girish Aivalli

This is the kind of book in which everything makes sense right at the end. All the threads come together and they make sense. Except, perhaps, one. 

The pace is adequate - neither too rushed nor too languid. 

It's a very easy book to read. At my age, the print size matters as much as the plot. 

But jokes apart, the book is easy to read because there is enough happening to keep the interest of the reader. 

The genre is spy thriller. There are enough coded references in the text to keep us guessing and engaged. 

I would recommend the book for young adults and above. So much better than fantasy - that appears to have become the default genre for young adults. 

Thoughts from an ICU

Quality, by definition, relies on uniformity of process. It requires that every interacting entity be given the same treatment. And through that, it ensures uniformity of experience. Which is great for machine parts, cars, powders. 

But humans, by their very nature, require personalised care. Uniformity of process will only ensure non-uniformity of experience. Therefore, in all human interactions - hospitals, education..... quality has to move from uniformity of process to uniformity of outcome. Everyone must get the personalised care that they need, so they can all feel cared for, accepted, and well. 

Review of Hostmonster Hosting and Domain Purchasing

I have a strange problem. 

My hostmonster account was compromised and 25 domain names were bought between Dec 31 and Jan 17. The billing amount varied from 14.15 to 70.75 USD. 

Different credit cards were used for each purchase. 

I got no email notification for ANY of these purchases and no receipts were emailed to me. 

I accidently found out when one of the credit card holders noticed a fraudulent charge and raised a dispute and got a chargeback. My hosting account was suspended and i could not access it because of the chargeback. I was surprised because no renewal was due on any of my products and no chargeback had been initiated by me. 

Hostmonster completely refused to do any analysis on how the emails were missed and instead mentioned that maybe my basic email id itself was compromised. EVEN IF that were so, it would be impossible to miss so many emails. All the same, I changed the password and took other security measures. 

Now, some weeks ago, my core site - kidsnews.top itself was compromised. We found out that the cpanel password was changed and that is how the hacker took control of our sites. The hostmonster support team helped us reset the cpanel password and also told us how to restore our website. 

However, they did no forensics to understand how the cpanel password was changed. 

Yesterday, when I tried to change my Cpanel password again, I realised that the CPanel password is not what I had set last time. When I tried to reset password, the email did not come. 

I confirmed the email id AND that I am supposed to get an email when the password changes (screenshot below). 

I am now able to access CPanel from the hosting main login. 

The issues are: 

A. Each transaction of 70 USD was done on a different credit card, but hostmonster is not able to explain why no email came to me OR cancel the credit card transactions OR even share the credit card numbers that were used. 

B. No idea how the CPanel password was changed with no notification to me. 

C. I asked for ip addresses of logins to my account and that was also not available. 

At this point, I am ok to shut down the entire hosting account and delete ALL our websites on Hostmonster. I also want to ensure that the credit card transactions that were fraudulently done are reversed and i m not listed as the owner of these domain names on the ICANN Registry. 

Can you please help? 

 

On Child Abuse

So, apparently, I wrote this for Parents Square.com and don't even remember! 

But its good work and therefore, keeping it for the future. 

https://www.parentssquare.com/parenting/identifying-child-abuse-and-dealing-with-it/

************* 

 I am not a writer. And I am not going to do any writing. But there is an issue that is most private and yet touches so many people that I cannot stay silent any more.

We love putting difficult issues in the closet. Bad idea.

I will deal with one such closet issue – sexual abuse of children.

The basics

Let me start off by laying down a few facts. If they are disconcerting, I am sorry, but they are not wrong.

• Children are not sexually passive. Freud was wrong. There is no latent stage. I was a school counsellor once, and also know that my children are very interested in their bodies. It has nothing to do with television or films.
• If you remember your own conversations from Class I, you’ll be surprised how often you discussed your own body in surrogate ways. Mothers of girls will remember their girls trying to pee like boys, or staring at their chests, wondering. They may not be looking for sex, but they know that certain parts of the body are different and special. Instances of children fondling each other have occurred, but since I haven’t worked enough with them I will go no further than to say it happens.
• Children know when they are being abused. Some of the cases I read about dealt with children who had been abused as infants. They had no conscious memory of the abuse, and yet had problems. Only upon deep probing could the cause be established as child abuse. Others, who were fondled thinking the child would not understand or know, did remember and were troubled.

And now, lets go straight to the subject – identifying child abuse and dealing with it.

What is abuse?

ANYTHING THAT VIOLATES A CHILD’S PRIVACY. Ranges from fondling to rape. If you are doing anything to a child you would not do in the parents’ presence, you are abusing the child. If you ARE the parent, and if you are touching your child more than s/he is comfortable with, you are abusing a child. Would you do it if your spouse were present?

Who is abused?

This one is simple – almost all children, male and female. And not, as one would think, isolated female children. More female than male though. It is absolutely wrong to think this does not happen to our children. It does. Worse still, our children do it sometimes (I have mentioned inter-child relationships above).

Who abuses?

Umpteen times it has been said, and yet we take no heed – abusers are ALMOST ALWAYS people we trust. No one who is not trusted will have the opportunity to abuse on an ongoing basis – right?

How does it hurt?

“So, how does it hurt a child so much if I have touched her/him a bit here and there? Why make such an issue out of it? I know you counsellors make a big thing out of everything to make money.” This is not an isolated parent talking. Most people who are not (known to be) abusers have asked, “Why are children so deeply affected by harmless stroking?”

Well, not all children are. We must remember that children are less protected by the strength of their own personalities. When something as beautiful and intimate as sex is introduced in such an unfriendly manner, they are jolted. What matters is not how bad the experience has been, but how bad the child has taken it.

There have been traumatised children from what would appear “small”(sic!) fondling, and there have been children who were party to such “games” and lived their lives with little more than social guilt. Each child is unique in responding to the same situation.

Why don’t parents know?

Because they do not communicate enough with their children. They trust the abuser so much the child does not expect them to believe it. The children don’t think the parents would care anyway and maybe they are overreacting. These are the chief reasons children gave me.

There are some parents who know but do not act. Personally, I think they hurt the child more than the abuser does. It makes the child feel s/he cannot, will not be protected by anyone.

How to tell if your child is being abused?

These are the most tell-tale signals I have been able to identify:

• The child’s very, very subtle disinterest in cleaning his/her private parts at bath-time and a tendency to avoid touching them.
• Alternately, the child’s increased sexual insolence (refusal to wear underwear, raising the skirt when walking the road etc.)
• The child’s sudden dislike for a close person for no apparent reason.
• When the child especially tries to avoid meeting an adult – this is a danger signal. Even if it’s not abuse, the child generally knows something you don’t, but should.
• Sometimes, children believe they are at fault, and may ask questions about god punishing them etc. Use the opportunity to know what is on the child’s mind.
• When they talk about a special/secret game, make your ears stand up!

What to do?

Let the child talk:

• Make your child feel comfortable – by holding younger children and making older children something they like to eat, or taking them out to their favorite place etc. Make sure you reiterate that you love them a lot and will do ANYTHING for them. Sometimes, your child provides you a clue in the most unexpected way – for god’s sake, seize the chance. Take it there and then.
• Ask questions. Establish whether the child is being abused by only one set of people or a person. It is not uncommon to know that the school chowkidar, the domestic servant and the neighbour are all abusing the child. Disgusting, but true.
• Establish the identity of the abuser(s). If the child is scared to reveal, stay calm and patient. Do not scare the child any more.

Sieve information and assess:

• The nature of abuse – how strong is it?
• How badly has your child taken it?
• How long has it been happening?
• Are other children, too, being abused? Maybe the dhobi is fondling all girls who play in the colony park (the colony park is one of the worst places.)
• If they are, do their parents know?
• What approach does the abuser use? Threat? Persuasion? “Lets play a game”?Now, ask yourself what your alternatives are. The list that follows is not the most politically correct thing to do, but is practical.
• If more than one child is involved (as in a school/colony), get other parents involved. The take collective action. But make sure you introduce the subject carefully. They may turn antipathetic if you do not.
• If it is a close relative you cannot directly confront (e.g. your spouse or a close cousin), drop clear hints about “increasing child abuse by known people” and “if I ever know it is happening to my child, I will not spare the fellow.”
• If it is someone you CAN confront, do so. Your child’s security is more important than your social relationships.
• Tell the child to go tell the abuser in the course of conversation that s/he will tell his/her parents about this. If the abuser is not a criminal, s/he will generally stop. It’s a simple thing, but I have seen it work so often.
• Wherever possible publicly humiliate the abuser. It’s a more efficient punishment than prosecution.

Taking care of the child
As a parent, here are things you will need to know:

• Let the child talk. Do not ever say ” C’mon, get over it now – it’s over.” That’s just what the child is trying to do! Listen, always listen, but don’t pity the child. Listen like you would listen to their school troubles. Support, do not pity.
• If they ask if they are “dirty” now, answer in the negative. It is people who do dirty things who are dirty. There will be other questions. Answer them honestly, directly, and lovingly. And patiently as well.
• If you want the child to treat it as a learning experience, YOU need to treat it as that first. No “Why me? Why my child?” It happens to so many children it’s NOT you or your child.
• If your child displays symptoms like fear in sleep, reduced social contact or avoids people belonging to the abuser’s class (friends, servants, teachers) – seek professional help.