According to this doc: https://docs.fcc.gov/public/attachments/FCC-20-42A1.pdf, VOIP providers must implement STIR/SHAKEN by June 30, 2021. And furthermore, Comcast reports in this report that by the end of 2019, "virtually all calls...terminating with a Comcast residential subscriber are fully authenticated through the STIR/SHAKEN protocol".
We still get 3 or more ID-spoofed calls a day. Is STIR/SHAKEN actually implemented? Have the bad guys figured out a way around this technology? Why are we still getting these calls?
@ptraversy wrote: ... "virtually all calls...terminating with a Comcast residential subscriber are fully authenticated ...
You left out a critical part of that quote:
... “virtually all calls originating from a Comcast residential subscriber and terminating with a Comcast residential subscriber are fully authenticated through the STIR/SHAKEN protocol.
The claim is only for Comcast residential to Comcast residential calls. Calls from other systems to a Comcast number may or may not have the data needed to allow the caller ID info to be authenticated.
Unrelated, your link has a trailing comma which, for reasons I don't understand, causes a DOCX document to be downloaded instead of a PDF. The PDF link is https://docs.fcc.gov/public/attachments/FCC-20-42A1.pdf.