Oh no, you're thinking, yet another cookie pop-up. Well, sorry, it's the law. We measure how many people read us, and ensure you see relevant ads, by storing cookies on your device. If you're cool with that, hit “Accept all Cookies”. For more info and to customise your settings, hit “Customise Settings”.

Review and manage your consent

Here's an overview of our use of cookies, similar technologies and how to manage them. You can also change your choices at any time, by hitting the “Your Consent Options” link on the site's footer.

Manage Cookie Preferences

  • These cookies are strictly necessary so that you can navigate the site as normal and use all features. Without these cookies we cannot provide you with the service that you expect.

  • These cookies are used to make advertising messages more relevant to you. They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed for advertisers, and in some cases selecting advertisements that are based on your interests.

  • These cookies collect information in aggregate form to help us understand how our websites are being used. They allow us to count visits and traffic sources so that we can measure and improve the performance of our sites. If people say no to these cookies, we do not know how many people have visited and we cannot monitor performance.

See also our Cookie policy and Privacy policy.
Sign in

ISP data deal with former 'spyware' boss triggers privacy fears

Don't worry, 'that was a long time ago'

Christopher Williams Mon 25 Feb 2008 // 13:57 UTC

More than ten million customers of the UK's three largest ISPs will have their browsing habits sold to a company with roots in the murky world of spyware.

The deal has sparked fears over privacy, but today Phorm, the firm behind the new advertising system, strongly rejected such concerns.

BT, Virgin Media, and Carphone Warehouse have agreed to feed data on their subscribers' web activities to Phorm. Data will be fed into the Open Internet Exchange, Phorm's advertising network, where advertisers will pay to target interest groups. Frequent visits to the BBC's Top Gear site might result in being served up more car ads, for example.

In exchange, the ISP trio will get a cut of new revenue. Analysts estimate BT's cut will be £85m in 2010.

There's no word on when BT, Virgin Media and Carphone Warehouse will begin sending customers' browsing information; but now that the broadband business is a high-volume, low-margin business, it's no surprise the providers are hungry for extra cash flow. Their choice of partner is ringing alarm bells in some quarters, however.

Phorm is run by Kent Ertegrul, a serial entrepreneur whose past ventures include selling joyrides on Russian fighter jets. Previously, his most notable foray online was as the founder of PeopleOnPage, an ad network that operated earlier in the decade and which was blacklisted as spyware by the likes of Symantec and F-Secure.

Security firm F-Secure describes PeopleOnPage's software here.

It says: "The spyware collects a user's browsing habits and system information and sends it back to the ContextPlus servers. Targeted pop-up advertisements are displayed while browsing the web.

"Each installation is given a unique ID, which is sent to the ContextPlus server to request a pop-up advertisement." ContextPlus was the rootkit that PeopleOnPage used to harvest data and hide its presence.

The similarities between this business model and that which will be kicked off by Phorm in the coming months are striking.

Phorm, under its previous name 121Media, floated on AIM in December 2004.

The accompanying announcement (pdf) explained how it envisaged its relationship with ISPs and their customers:

The company's business model revolves around distributing its PageSense technology to as many users as possible and showing users as many advertisements as possible, without causing negative reaction, to maximise response.

121Media currently acquires most of its users by integrating its PageSense Desktop technology with consumer software products known as distribution applications, which are offered free of charge to internet users in exchange for their permission to display advertisements.

PageSense Javascript can be embedded by a variety of partners, such as Internet Service Providers, serving pages to those connecting to the internet through them.

Sounds quite familiar, doesn't it? The difference between 121Media/Phorm and PeopleOnPage is that the newer company buys its targets direct from ISPs, rather than persuading people to download spyware. It aims to make its money strictly from legit advertisers and publishers, avoiding the sort of operators that gave pop-up advertising such a bad name in the early noughties.

Page:
89 Comments

Similar topics

Other stories you might like

  • Battlefield 2042: Please don't be the death knell of the franchise, please don't be the death knell of the franchise

    Another terrible launch, but DICE is already working on improvements
    Richard Currie Sat 4 Dec 2021 // 09:00 UTC

    The RPG Greetings, traveller, and welcome back to The Register Plays Games, our monthly gaming column. Since the last edition on New World, we hit level cap and the "endgame". Around this time, item duping exploits became rife and every attempt Amazon Games made to fix it just broke something else. The post-level 60 "watermark" system for gear drops is also infuriating and tedious, but not something we were able to address in the column. So bear these things in mind if you were ever tempted. On that note, it's time to look at another newly released shit show – Battlefield 2042.

    I wanted to love Battlefield 2042, I really did. After the bum note of the first-person shooter (FPS) franchise's return to Second World War theatres with Battlefield V (2018), I stupidly assumed the next entry from EA-owned Swedish developer DICE would be a return to form. I was wrong.

    The multiplayer military FPS market is dominated by two forces: Activision's Call of Duty (COD) series and EA's Battlefield. Fans of each franchise are loyal to the point of zealotry with little crossover between player bases. Here's where I stand: COD jumped the shark with Modern Warfare 2 in 2009. It's flip-flopped from WW2 to present-day combat and back again, tried sci-fi, and even the Battle Royale trend with the free-to-play Call of Duty: Warzone (2020), which has been thoroughly ruined by hackers and developer inaction.

    Continue reading

  • American diplomats' iPhones reportedly compromised by NSO Group intrusion software

    Reuters claims nine State Department employees outside the US had their devices hacked
    Thomas Claburn in San Francisco Sat 4 Dec 2021 // 01:54 UTC

    The Apple iPhones of at least nine US State Department officials were compromised by an unidentified entity using NSO Group's Pegasus spyware, according to a report published Friday by Reuters.

    NSO Group in an email to The Register said it has blocked an unnamed customers' access to its system upon receiving an inquiry about the incident but has yet to confirm whether its software was involved.

    "Once the inquiry was received, and before any investigation under our compliance policy, we have decided to immediately terminate relevant customers’ access to the system, due to the severity of the allegations," an NSO spokesperson told The Register in an email. "To this point, we haven’t received any information nor the phone numbers, nor any indication that NSO’s tools were used in this case."

    Continue reading

  • Utility biz Delta-Montrose Electric Association loses billing capability and two decades of records after cyber attack

    All together now - R, A, N, S, O...
    Gareth Corfield Fri 3 Dec 2021 // 22:06 UTC

    A US utility company based in Colorado was hit by a ransomware attack in November that wiped out two decades' worth of records and knocked out billing systems that won't be restored until next week at the earliest.

    The attack was detailed by the Delta-Montrose Electric Association (DMEA) in a post on its website explaining that current customers won't be penalised for being unable to pay their bills because of the incident.

    "We are a victim of a malicious cyber security attack. In the middle of an investigation, that is as far as I’m willing to go," DMEA chief exec Alyssa Clemsen Roberts told a public board meeting, as reported by a local paper.

    Continue reading

Biting the hand that feeds IT © 1998–2021

Your Consent Options Cookies Privacy Ts&Cs