Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Malware Analysis
Telephone scam
Message
<blockquote data-quote="TRS-80" data-source="post: 846551" data-attributes="member: 81749"><p>G'day [USER=69581]@show-Zi[/USER] and everyone,</p><p></p><p>In Australia we've been dealing with an increasing number of attacks, scams and the like.</p><p></p><p>The majority I've had involvement with are of “Russian” origin. They usually route through Indian or Brazillian VPN and TOR connections.</p><p></p><p>South American scams and attacks continue to increase.</p><p></p><p></p><p>**DO NOT REPEAT THESE ACTIONS!**</p><p></p><p>I once had an old Win7 machine which was in the throws of death anyway. I only used it to browse the Web.</p><p></p><p>Sure enough, one day, quite a few years back, up popped a full screen “Call Microsoft Support.....” window. Oh, I forgot, there was beeping that implied urgency.</p><p></p><p>Apparently I'd been infected with “The Porn Virus.” In BIG RED words.</p><p></p><p>I'd been nowhere near any Porn sites on that machine. Period!</p><p></p><p>I was aware of these scams, but thought I'd play with them. I actually phoned them, purely to see how they behaved. I had a landline with an unlisted(hidden) number. The call was answered by a South American sounding voice that could have just been woken from the dead. I was asked to “hold.”</p><p></p><p>There was an extremely loud “beep” on the phone line. It then began ringing again.</p><p></p><p>Eventually an Indian sounding man answered the call. He went on to advise me of the seriousness of my infection; always over-acting, trying to instill fear and urgency. After some time passed he returned to sales mode. I was told that they could have a technician remote into my system and repair the “damage” caused by the “vicious virus.” That would carry a cost of USD$375 for a one off clean. A three year “Security Umbrella” could protect my electronic devices on any connection, anywhere in the world and, on any machine! The cost for that would be USD$2700.</p><p></p><p>I stopped and realised the laptop I was using was finished anyway. He was informed they could remote in, however, if I was not satisfied with their “One off clean,” there would be no payment. To my amazement, he agreed!</p><p></p><p>Next I was put on to a security “expert” who would make my computer run again! I was on hold for a matter of seconds.</p><p></p><p>This group was calling themselves “Live Technologies Incorporated.” They used LogMeIn Rescue(LMIR) missing only the Microsoft logo. Thus, the due PIN login process followed.</p><p></p><p>First up they got rid of the fake Microsoft message telling me to phone them.</p><p></p><p>Next I was shown Command Prompt directory listings of a couple of Temp folders showing all the “infectors.”</p><p></p><p>Next they ran JRT. It found COOKIES and a PuP.</p><p></p><p>She then spent time installing their version of a RAT. All up, I reckon I spent maybe 10 minutes with the “Security Expert.” Once she was done she asked me if I was happy “the job.” I immediately retorted with NO, I AM NOT!</p><p></p><p>She started to get a little panicky, eventually telling me I'd have to speak to her supervisor, Sean.</p><p></p><p>Sean picked up his phone very quickly. He demanded that I repeat my credit card details to him. I advised him of our arrangement that I'd pay them IF I was happy with their cleaning. Also, that I had never given him credit card details as I don't have one. He became increasingly pushy. I told him if he could provide me a business address I would post him a cheque. The language travelling along the phone line from my end now became increasingly “blue.”</p><p></p><p>In the end I just got fed up listening to his idiocy. I asked him to insert his head into his backside and take a deep breath. That was the end of the conversation.</p><p></p><p>I spent the next couple of hours watching my old laptop connecting to a large number of remote servers.</p><p></p><p>I wasted plenty of their time & effort. Their operations were temporarily interrupted. They incurred all costs other than my time.</p><p></p><p>I had a laugh and, vented my frustrations on the poor sod.</p><p></p><p>I'd had enough. The next day I put a pick through the laptop.</p><p></p><p>Please don't try doing the same thing. I was lucky enough to have a few spare routers and gateways lying around. These must be replaced(in my opinion) due to the possibility of Advanced Network Infectors.</p><p></p><p>I hope this brings a little more of the way these people work. Also, hope it gives a few of you a laugh.</p><p></p><p>Cheers!</p></blockquote><p></p>
[QUOTE="TRS-80, post: 846551, member: 81749"] G'day [USER=69581]@show-Zi[/USER] and everyone, In Australia we've been dealing with an increasing number of attacks, scams and the like. The majority I've had involvement with are of “Russian” origin. They usually route through Indian or Brazillian VPN and TOR connections. South American scams and attacks continue to increase. **DO NOT REPEAT THESE ACTIONS!** I once had an old Win7 machine which was in the throws of death anyway. I only used it to browse the Web. Sure enough, one day, quite a few years back, up popped a full screen “Call Microsoft Support.....” window. Oh, I forgot, there was beeping that implied urgency. Apparently I'd been infected with “The Porn Virus.” In BIG RED words. I'd been nowhere near any Porn sites on that machine. Period! I was aware of these scams, but thought I'd play with them. I actually phoned them, purely to see how they behaved. I had a landline with an unlisted(hidden) number. The call was answered by a South American sounding voice that could have just been woken from the dead. I was asked to “hold.” There was an extremely loud “beep” on the phone line. It then began ringing again. Eventually an Indian sounding man answered the call. He went on to advise me of the seriousness of my infection; always over-acting, trying to instill fear and urgency. After some time passed he returned to sales mode. I was told that they could have a technician remote into my system and repair the “damage” caused by the “vicious virus.” That would carry a cost of USD$375 for a one off clean. A three year “Security Umbrella” could protect my electronic devices on any connection, anywhere in the world and, on any machine! The cost for that would be USD$2700. I stopped and realised the laptop I was using was finished anyway. He was informed they could remote in, however, if I was not satisfied with their “One off clean,” there would be no payment. To my amazement, he agreed! Next I was put on to a security “expert” who would make my computer run again! I was on hold for a matter of seconds. This group was calling themselves “Live Technologies Incorporated.” They used LogMeIn Rescue(LMIR) missing only the Microsoft logo. Thus, the due PIN login process followed. First up they got rid of the fake Microsoft message telling me to phone them. Next I was shown Command Prompt directory listings of a couple of Temp folders showing all the “infectors.” Next they ran JRT. It found COOKIES and a PuP. She then spent time installing their version of a RAT. All up, I reckon I spent maybe 10 minutes with the “Security Expert.” Once she was done she asked me if I was happy “the job.” I immediately retorted with NO, I AM NOT! She started to get a little panicky, eventually telling me I'd have to speak to her supervisor, Sean. Sean picked up his phone very quickly. He demanded that I repeat my credit card details to him. I advised him of our arrangement that I'd pay them IF I was happy with their cleaning. Also, that I had never given him credit card details as I don't have one. He became increasingly pushy. I told him if he could provide me a business address I would post him a cheque. The language travelling along the phone line from my end now became increasingly “blue.” In the end I just got fed up listening to his idiocy. I asked him to insert his head into his backside and take a deep breath. That was the end of the conversation. I spent the next couple of hours watching my old laptop connecting to a large number of remote servers. I wasted plenty of their time & effort. Their operations were temporarily interrupted. They incurred all costs other than my time. I had a laugh and, vented my frustrations on the poor sod. I'd had enough. The next day I put a pick through the laptop. Please don't try doing the same thing. I was lucky enough to have a few spare routers and gateways lying around. These must be replaced(in my opinion) due to the possibility of Advanced Network Infectors. I hope this brings a little more of the way these people work. Also, hope it gives a few of you a laugh. Cheers! [/QUOTE]
Insert quotes…
Verification
Post reply
Top