Why am I receiving calls from no one?

  • 0
  • 31
  • Question
  • Updated 5 years ago
  • Answered
  • (Edited)
Archived and Closed

This conversation is no longer open for comments or replies and is no longer visible to community members. The community moderator provided the following reason for archiving: We have archived this topic as it has either reached a resolution, has become inactive, or information contained in this thread is no longer accurate. If you have questions or comments related to this to thread, please create a new topic, or post to anot

Ever since ported my toll-free number to Ring Central, we have been receiving calls from "nobody." Usually they are from California or somewhere in the South. No one is there when we pick up. When we try to call back the number, we get the message that the call cannot be completed as dialed or get no answer or rarely a generic voice mail & we never hear back from them. When we google the numbers, usually the numbers are not well documented, occasionally people describe the same as above. The calls come in waves - none for a few days and then 5 in 3 days or so. Has anyone else experienced this?
Photo of Jennifer Fryer

Jennifer Fryer

  • 420 Points 250 badge 2x thumb

Posted 7 years ago

  • 0
  • 31
Photo of Dave Herron

Dave Herron, U.S. Tier 3 Support

  • 768 Points 500 badge 2x thumb
Official Response
As an engineer for RingCentral I can tell you with authority we are definately not doing this to rack up minutes. This is actually a result of malicious intent. "Hackers" use a program calle SIP vicious to probe peoples networks and compromise phones. They then attack your phones by ringing them and ultimately get your login information from your phone. They can then use your specific login information to login to the RingCentral and make calls on your behalf. You can validate one of these attacks if your phone rings with a suspicious caller ID ("100") and then if you look in your RingCentral call log it will not show the call. That means the call didn't come through RingCentral servers, and the attackers have found a way in to your network. This can be mitigated one of 2 ways.
1. Recommended that you limit traffic to and from your phones ONLY from RingCentral IP addresses. You may need to enage the help of an IT professional to do this. The IP ranges you should be accepting traffic from are 199.255.120.0/22 and 199.68.212.0/22


2. To help with this issue RingCentral has recently implemented encrypted SIP registration or SIP TLS. This encrypts all communications back and fourth between RingCentral and your phone. This eliminates the ability for anyone on the internet to be able to just log in to your phone. You can ask to have this enabled by calling in to RingCentral support and asking them to enable this feature.
Photo of Mike

Mike, Official Rep

  • 94,468 Points 50k badge 2x thumb
New Topic. Archiving old thread.

Please reference the new conversation here: Why am I receiving calls from no one? Is RingCentral doing this to use my minutes...
This reply was created from a merged topic originally titled Numbers that aren't working are calling and I am being charged, What's the deal?.

I am an investigator and use ring central for fax service for a repo company I own. I checked the validity of phone numbers that our on my current calls and only 1 is a legitimate working number. And it is someone that I know sent us a fax. The calls last 40 seconds, most of disconnected magic jack type phones, Are you doing this to drive up my bill? I call customer service but no one speaks English and what can be discussed in 4 minutes takes 30 minutes.
Photo of Azar Hussain

Azar Hussain

  • 92 Points 75 badge 2x thumb
This reply was created from a merged topic originally titled phantom calls that I can't answer or hang up - driving me crazy!.

Hi,

I'm new to ringcentral and think it's great but lately I've been getting phantom calls from unknown and '500' that sometime ring for 5 minutes and I can't answer or direct them to the answerphone or anything.

I've had to change my ring tone to one of my favourite songs just to stop it driving me crazy!

I've rang ringcentral but they said they can't fix it, it's something I'd need to sort myself with regard to open ports on my router.

I have no idea how to fix this so any advice from someone who has had a similar problem would be gratefully received! ;-)

Thanks
Photo of Luke Bazely

Luke Bazely

  • 80 Points 75 badge 2x thumb
We use Callture / Telcan, and I can assure you that we have the exact same issues. Calls from California and Alabama area codes with nobody on the other end. It only happens on our toll free numbers. Definitely not a Ring Central problem, but frustrating nonetheless. This is a regulatory issue in that both Canadian and US governments need to put an end to the practice.
Photo of Alyssa Olszewski

Alyssa Olszewski

  • 80 Points 75 badge 2x thumb
This reply was created from a merged topic originally titled Unable to answer call from unknown, single, or double digit number.

Periodically, the desktop app shows a call coming in from an unknown, single, or double digit number (i.e. 1).  It rings and rings but when I try to answer the call, nothing happens and the app freezes up.  I am unable to stop the ringing until I open task manager and shut down the app from there.
Photo of Mike

Mike, Official Rep

  • 94,760 Points 50k badge 2x thumb
See the official post above from one of our engineers. You issue sounds like it maybe related. You'll probably want to give us a call if this is still happening. 
Have you ever called tech support Mike? They barely speak English.
(Edited)
Photo of Mike

Mike, Official Rep

  • 94,760 Points 50k badge 2x thumb
Hi Diane,  Sorry if you've had a bad experience with the phone support. If you prefer, you can Open a Case online. 
No, I am good, but I'll keep my eyes opened, if this is happening to a lot of people and you are charging us for calls that are not legit, your company could have a real problem because you charge by the minute. A dollar a month is no big deal to one person, but if it is happening to lets say 100K a month, at 1.00 a piece, that would be a problem.
Photo of Alex

Alex

  • 102 Points 100 badge 2x thumb
This reply was created from a merged topic originally titled Annoying calls / fake calls / telemarketer calls / do not call list.

Hello!
We have been getting calls to our main line (no extension) but they do not leave a message, or leave a few seconds of blank message. They are not clients or leads of ours and appear from area codes across the US.

Has anyone else had this issue? Are these likely automated telemarketing calls? Is there a do not call list I can enter? Thanks!

Our number has been posted publicly on our site for a few years. This has been a problem for the past year. I realize five calls a day might not be a nuisance for some, but we receive a small call volume and our Director has stopped answering calls altogether because most of them are "fake".
Photo of Alex

Alex

  • 102 Points 100 badge 2x thumb
Workaround solution:

Set default message "hello thanks for calling, press X to speak to someone...", and set up extension X as the receptionist.

After dealing with this issue for a few months I've realized this is the only way to avoid these mysterious fake calls. I'll need our messages professionally re-recorded first, which I've found oDesk or voices.com great for.

I see someone else also recommended this below.
Photo of Scott Schroeder

Scott Schroeder

  • 212 Points 100 badge 2x thumb
This reply was created from a merged topic originally titled Anyone else receiving phantom calls?.

Has anyone else been receiving phantom calls?

Symptom: Our toll-free number receives a call, which is routed to my cellphone via Find Me Follow Me rules. The Caller ID shows an actual number. When I answer, there is silence. Dead air. The call remains connected as long as I'm on. If I disconnect, and then call the number back, I typically either get a generic voicemail or a voicemail that's clearly not one of my customers. These calls happen at seemingly-random times, but especially at night - 10PM, 4AM, 6AM. The first time I noticed this is Feb 25, 2015 at 2:56PM Pacific.

It SEEMS like either there never was a caller in the first place, and our phones are ringing from a call that is completely invalid, or, if there was a caller, the caller disconnected. Our greeting takes 30 seconds to play after hours, and invalid callers would normally hang up if they realized that they were calling someone by mistake - it should provide ample time to disconnect without bothering me.

This is an emergency 24/7 hotline, which needs to be manned at night. I can't just ignore the calls. I tried to get help from RingCentral support, but they said that the solution is for me to register a complaint with the FCC. I've used RingCentral for over 5 years, and can definitively state that this behavior is new and ongoing.

I don't know if there is an industry-standard term for these calls. Ghost calls? Invalid calls? Phantom calls sounded right to me. Please, if other people are having this sort of problem, share: When did it start? How frequently does it happen? Do you have any thoughts about what might be causing it? Has anyone at RingCentral worked on this problem with you? Does it appear to be specific to RingCentral? Are there alternate suppliers who either don't have this problem at all or have a solution for it? Are there reasons to believe porting my number to another carrier would make any difference?
Photo of Mike

Mike, Official Rep

  • 94,760 Points 50k badge 2x thumb
Hi Kevin,  If you didn't see the "official response" above, take a look at it.  If you have not contacted our support team feel free to do so, or you can Open a Case and provide the details, dates,  times etc in the support case. 
Photo of Scott Schroeder

Scott Schroeder

  • 212 Points 100 badge 2x thumb
It sounds like there are at least 2 different scenarios involved here. My scenario has been worked around now, with RingCentral's assistance - thanks, John Rodriguez! The calls are still coming into my system. However, we enabled the initial Automated Attendant feature, which says "If you know your party's extension, please enter it now, or press 0 for the operator". I recorded my own version, saying "Thank you for calling, please press 0 to continue." It's a slight pain for my callers to have to press 0, but those phantom calls we were getting _never_ press 0. At least, not so far. I have received dozens of "Missed Call" emails, but they're all cases where the caller failed to press 0.

I do still think there is an issue within RingCentral, where these calls are a symptom of a system issue, but this solution filters them out for me. Note that the "Call Screening" section that prompts for the caller to say his name and press # does NOT actually screen - the caller does NOT have to press # to continue, it continues to process the call after 5 seconds if the caller doesn't say a name. I would prefer to REQUIRE the caller to press # - and prompt multiple times if needed - but this workaround has been saving me from calls in the middle of the night, and that's what I really care about. Note: I am quite confident that RingCentral is NOT simply doing this to ring up more charges. There aren't enough calls to change what I'm being billed. If it's a nefarious plot, it's poorly done. But I still worry that the calls are being mis-routed - perhaps there are calls coming in to someone else's toll-free number, it's being incorrectly mapped to our number for the ring of the call, but the actual connection isn't being completed. Until/unless one of my customers reports that he called in and no one answered, whose call does not show in my log, I won't worry too much about this. But I wonder whether anyone is reporting that THEIR callers aren't being CONNECTED to them properly...
Photo of Mike

Mike, Official Rep

  • 94,760 Points 50k badge 2x thumb
Scott, thanks for sharing your work-around!  
Photo of Randall

Randall

  • 472 Points 250 badge 2x thumb
Scott, thanks for the workaround suggestion. I was thinking of using call screening but as you've shown that isn't foolproof. It seems the only way to actually filter out these phantom calls is with the automated attendant. Of course plan minutes are still being used whether the call is answered or not.
Photo of Scott Schroeder

Scott Schroeder

  • 212 Points 100 badge 2x thumb
I just checked my Call Log, Randall. I'm not being billed at all for the calls that the automated attendant is screening. They all show that they were connected for less than a minute, with $0.00 billed for the call. About half the calls I've received since making this change have been blocked. So far, 1 of my customers has commented on the change in needing to press 0, so it hasn't been terribly impactful on them, but it's helped me a lot. It has blocked calls at 2AM, 3AM, 5AM, 6AM, 7PM... blocking those calls helped me maintain my tenuous grip on sanity. ;^)
Photo of Mike

Mike

  • 92 Points 75 badge 2x thumb
The official response is BS.  I don't have the network phones, and I still get a couple ghost (silent) calls forwarded to my mobile phone per day.  They are coming through or from within the RC network.  At night when my service is "off", these calls just steal 4-5 minutes of my time, and I get no message.  How can I lose time for a non-answered call?  And there's no good way to see your minutes used/left on their site.  When I call the numbers back, and they are bogus.  Other services like Google Voice seem to protect against fake/spam callers, so why doesn't RC?  I am absolutely furious about these harassing calls and the whole billing process.  Side note:  why in the %@#& do I have to register for a whole other site just to leave comments in the RC forum!?!?
Photo of Kevin Sharp

Kevin Sharp

  • 82 Points 75 badge 2x thumb
I believe it is Wardialing which is much more complex than an incompetent spammer. They are probably hackers as opposed to someone wanting your credit card information. Autodialing  thousands of numbers as a way of exposing security holes in PBX systems. http://en.wikipedia.org/wiki/War_dialing

I don't believe Ringcentral is at fault. As technology evolves, so does the expertise of the hacking community. How to prevent these call is not an easy task obviously.
Photo of Mike Bruns

Mike Bruns

  • 566 Points 500 badge 2x thumb
Kevin, you're exactly right.  It's a constant race between the hackers and the phone companies.  Ringcentral is doing some good things.  They're one of the first companies I've seen that is introducing Secure-Voice.   They're taking some steps to address "ghost calls"

Customers also need to ensure they have proper firewalls setup.  A simple test is to go to: 
http://www.canyouseeme.org/   and check port 5060.    If the result is "Success", it means that anyone on the internet can connect to your phone.  That's something that Ringcentral cannot fix, it's something that needs to be fixed on your router or firewall.   



 
Photo of Mike Bruns

Mike Bruns

  • 566 Points 500 badge 2x thumb
Kevin, you're exactly right.  It's a constant race between the hackers and the phone companies.  Ringcentral is doing some good things.  They're one of the first companies I've seen that is introducing Secure-Voice.   They're taking some steps to address "ghost calls"

Customers also need to ensure they have proper firewalls setup.  A simple test is to go to: 
http://www.canyouseeme.org/   and check port 5060.    If the result is "Success", it means that anyone on the internet can connect to your phone.  That's something that Ringcentral cannot fix, it's something that needs to be fixed on your router or firewall.   



 
Photo of Randall

Randall

  • 472 Points 250 badge 2x thumb
Once again I will reiterate that they must be incompetent because my phone is a cell phone. In fact, it's $15 flip phone from Virgin Mobile. There is no firewall, or router, or PBX to compromise. When they dial my number, they accomplish nothing but wasting their own time.

Wargames is one of my favourite movies. I just watched it last weekend. And as the movie showed, dialing numbers sequentially is one method to locate an entry point into a phone system. But not to persistently redial the same number that has shown no results just twice a day and expecting a different result after 80 attempts over a 4 week period. That is futile. If the goal is to break into a phone system by inundating it with calls, then it is even more senseless and inefficient to autodial in this fashion.
Photo of Mike

Mike

  • 92 Points 75 badge 2x thumb
UPDATE: I tried Scott's "press 1 to speak to someone" solution.  It does prevent me from getting the call, so that's good.  But I still get 2 minute silent messages that use up my time.  I'm now confident these are a result of a simple war dialing tactic which is similar to the very unsophisticated hack scripts my web server gets every day as well.  There's nothing you can do about this.  The do not call list doesn't matter to these hackers.  And your type of system doesn't matter either.  Where Ring Central is failing is by charging us for time not used speaking on their line.  The auto-receptionist and message time should be free.  Or they need to figure out how to make it not charge for or record silence.
Photo of Mike

Mike, Official Rep

  • 94,780 Points 50k badge 2x thumb
Most of you have probably heard, or seen this by now but the "ghost call" issue is something that we are have been working on for quite some time.   We recently issued a "white paper" which you may want to take a look at. 

Preparing your Network for
SIP over TCP and Secure Voice
Technical Whitepaper
for IT Administrators


Also, please don't confuse "ghost calls" with spammers and telemarketers.  
Photo of Mike

Mike, Official Rep

  • 94,780 Points 50k badge 2x thumb
Hi Mike,  I'm not sure about this but I'll look into it and see if it's an option. Thanks for sharing. 
Photo of Mike Bruns

Mike Bruns

  • 566 Points 500 badge 2x thumb
Mike, could you ask the team that wrote the above whitepaper, which SIP settings they recommend changing in response?  Some of us have manually provisioned devices. 
(Edited)
Photo of Mike

Mike, Official Rep

  • 94,780 Points 50k badge 2x thumb
Mike Bruns ,    I don't believe this changes anything on the phone, but I can double check.  Or, are you referring to the settings on page 5-6?  
Photo of Mike Bruns

Mike Bruns

  • 566 Points 500 badge 2x thumb
Hi Mike, thanks!

I am talking about changes to the phone.  Here are the current settings on my Ringcentral Linksys ATA, but all endpoints will have similar SIP options.

 

1)   To take advantage of TCP, I assume I just need to set the SIP Transport to TCP rather than UDP.   Are there any other changes?

2)  The Restrict Source IP is set to no.  Per Dave Herron's note, setting this to "Yes" could help to eliminate ghost-calls, as the ATA would only respond to ringcentral servers. If this is not set by default for all endpoints, maybe it should be. 

3)  I'm not sure if my ATA supports Secure Voice.  If it does, I need to know the settings to talk to the RC servers over a secure TLS connection.
Photo of Dave Herron

Dave Herron, U.S. Tier 3 Support

  • 768 Points 500 badge 2x thumb
Hi Mike,
Unfortunately it DOES need to be set to TLS to take advantage of this feature, and it can not be done manually. It needs to be provisioned by our servers to accept the encryption license. In this case you would probably need a more robust firewall entry to ensure traffic from your phones is only accepted from our IP ranges. Hope this helps.

-Dave
Photo of Mike

Mike, Official Rep

  • 94,780 Points 50k badge 2x thumb
I just wanted to confirm the information which one of our engineers "Dave" posted above in the "official response".  This is for Phantom, or "ghost calls" only and does not pertain to robo calls, spammers, ID spoofing etc. 


A phantom call, or "ghost call"  is identified when a customer describes receiving calls when answered there is no one on the line. They typically have a strange caller ID that does not meet the normal 10 digit standard, and if you look the call up in the call logs they do not show up. 

How to mitigate
Since this is an attack that originates from the internet, the users router needs to have rules in place to prevent the attack from reaching the customer phones. This can be done by not only restricting data to the incoming ports, but also limiting that data to come from only the 2 RingCentral IP addresses. 

A.  Update Firewall Settings based on whitepaper:
link: http://netstorage.ringcentral.com/documents/sip.pdf

B. Set the following IP Address: 199.255.120.0/22 and 199.68.212.0/22  as
the FROM IP address.

C. Refer to your company IT Admin for proper configuration of the network.
Photo of Mike

Mike, Official Rep

  • 94,780 Points 50k badge 2x thumb
I've created another post related to the problem with spamming, robo dialers, caller ID spoofing.  For anyone in this thread that is having problems with this issue (not ghost calls), please visit this page and click the "like button..  Idea for stopping/blocking spammers, Caller ID spoofers and robo dialers

Mike 

This conversation is no longer open for comments or replies.