Slashdot Mirror
Regulators Smash Global Phone Tech Support Scam Operation
SternisheFan sends this excerpt from ZDNet:
"Regulators from five countries joined together in an operation to crack down on a series of companies orchestrating one of the most widespread Internet scams of the decade. The U.S. Federal Trade Commission (FTC) and other international regulatory authorities today said they shut down a global criminal network that bilked tens of thousands of consumers by pretending to be tech support providers. FTC Chairman Jon Leibowitz, speaking during a press conference with a Microsoft executive and regulators from Australia and Canada, said 14 companies and 17 individuals were targeted in the investigation. In the course of the crackdown, U.S. authorities already have frozen $188,000 in assets, but Leibowitz said that would increase over time thanks to international efforts."
I got them on the phone once, and I let them loose on a VM. If I had a bit more time, I'm sure I could have had much more fun with them. I know someone who fell for it, and I asked them (the victim) one question: "Why in the world would Microsoft call you? They already have your money, they don't care from that point on." It baffles me totally that anyone would fall for it.
Ahhh...the great dumpster continuum. Many a free computer will be found there. -- sowth (748135)
I have to give the perps credit it was a clever idea. Sad that this sorta thing goes on...
Karma: Bad
An enigma, wrapped in a riddle, shrouded in bacon and cheese
I would like to hear more about how these guys got their phone number lists.. they seemed to have unlisted numbers together with correct names. In Ireland particularly, I only ever seemed to hear about this from people who were customers of a certain large ISP.
Which I found amusing at first, especially since I run a Mac ;)
The first time they called, I hung up immediately since I had better things to do. The second time, though, I got fairly annoyed at the guy who sounded like he was on the other side of the world in a shack somewhere. I wanted to probe him and ask questions - he claimed to be calling on behalf of my ISP, but did not disclose a name. He wouldn't answer any of my queries and kept on talking and talking - until silence and hung up.
And here I was planning on setting up a Virtual Machine and let them tinker with it to see what they did if they ever called me again - guess that ain't going to happen any more!
At least once a week - one time, I let them go thru all their b.s. (especially the .inf file part, made me laugh when he said "they slow you down", lol - the scammer asked why I was laughing too).
I stayed on the phone with them though - just so I could get their host-domain or url they wanted me to go to so I could block it in my custom hosts file (got it too).
I told them "THANKS!" at that part, & he asked why - I told him... lol, he hung up!
Funniest part is, later? They tried it again... lol!
* One time, I told them I was an agent of law enforcement, & they hung up... FAST!
APK
P.S.=> They were persistent little scumbags...
...apk
They must have missed some. My aunt got a call this afternoon from them.
Non bene pro toto libertas venditur auro
Tell me it was that god damn MyFuckingCleanPC (a.k.a. MySlowPieceOfShitPC) company that got busted...
PULLEEEZZZZEE!
-- You are in a maze of little, twisty passages, all different... --
Interestingly enough, when I smelled scam a year ago and asked for particulars (company name and address) I was given them! The company was a pronounced like Symantec but spelled differently. I Googled them after hanging up and found about 40 want ads from them looking for tech support people in India... Even the scammers use the internet to recruit.
I've received about 30 of these calls over the last year. The last time (yesterday) I lambasted the salesman for working for fraudsters, I was told "Well, don't blame me when your computer breaks down". *sigh*
What I want to know is how or why their credit card privileges weren't terminated a year ago.
Are they saying Tech Support calls you?
This must be some kind of joke
“He’s not deformed, he’s just drunk!”
You have viruses, spyware. and for $50 we can fix ok?
They've rang us a number of times but the last time it came through with a caller ID, which was surprising. I've had a fair bit to do with VoIP here with Optus and I recognised that the number had a block ID which was reserved to Optus, so I used their block allocation lookup and found it allocated to a specific company with an ABN (Australian Business Number) and then rang my sales guy there to see what could be done to track them down. He was surprised and said he would pass it on to their internal scam monitoring department and within half and hour I received a call from them asking me about the call and asking if I would be prepared to talk to the Australian Federal Police, who then rang me 10 minutes after that and grilled me about the call too. Didn't hear anything more about it.
Task Mangler
180K in assets ? NO really wow big stop there...i wonder how corporate scamming compares
I've received two calls in the last week so I'm not sure how the USFTC can claim to have 'shut them down'.
My strategy these days is to ask them to hang on 'for just a minute' and then go and leave my phone under a cushion for 20 minutes. I figure that wasting their time is the most effective way to fight back.
I helped a guy who got scammed by these guys but it turned out that he was so stubborn that he just wouldn't do what they wanted and just argued with them that they were wrong. So about all that got hurt was the home page on his browser.
Personally I just wasted their time and would thank them for calling and say my computer was acting up and all slow. I would tell them it was booting but to be patient as it would take a few minutes. Then I would say oh something says it installed something and I need to reboot again. I would do this over and over until they hung up. Didn't take my time as they were on speaker phone and I would only talk to them during compiles.
Also the phone conversational radio show Wiretap by CBC seemed to keep them on the line for a long while.
They finally got them.
And $188,000..., sounds like everyone will get their money back!
Link to ESecurity's scareware story... http://www.esecurityplanet.com/malware/ftc-wins-163-million-judgment-against-scareware-marketer.html
They called me once, i recorded the conversation and trolled the guy. http://barrystaes.nl/scambait/
I always assumed they where in Indonesia and used compromised voip exit servers in their victims country..
Hivemind harvest in progress..
It's about time these bastards were caught.
They conned $50 out of my sister by pretending to be from Microsoft and they wanted to help her uninstall a virus, carefully stepping her through various setting screens on her Mac for half an hour.
http://www.itnews.com.au/News/317816,us-authorities-bust-microsoft-support-scam.aspx
More importantly - here's 1 of the "tricks" they try pull that I noted:
http://www.itnews.com.au/News/257822,how-the-microsoftlogmein-support-scam-works.aspx
* They TRIED to pull the EventLog one too that THIS article notes, & I was like "wait a second - are you REALLY trained in this? Those are merely eventlog entries, not errors of a serious nature!" - guy was quick too, & asked IF there were any "warning" ones (there aren't ANY here... almost never, that is).
That's when he "moved on" to the .inf file one I noted in the 2nd link...
LMAO, & I just "played along" UNTIL they wanted ME to go to (I won't spell it 'unified' so nobody gets burnt here by it) w w w . a m m y y . c o m ...)
APK
P.S.=> I put that into my custom hosts file, & that was that... blocked off, for good (they called again & I told them I was an agent of law enforcement - they hung up then, instantly!)...
... apk/b
Yeah, I've gotten a few calls from people claiming to be "Microsoft support". It's a lot of fun to run them around in circles and waste their time. By the end of one call I had the guy screaming that I was an asshole and he was 'revoking my Windows license'. Always good for a laugh if you're bored.
Well, given the arrests, if I get another call, I'll be seriously attempted to answer something like..
Scammer: I'm calling from Microsoft and ....
Me: Wait a moment, its all over Google News in the last hour. They're raiding 23 workplaces all over India for you guys... Oh, right. Google India is probably blocking it until they're finished the raids... Wait... There, I've got it up here on my screen. OH MY GOD!
They've updated. The police have found bodies! OH MY GOD. Lots of bodies. Why? Why? Oh Jesus. [Reading] Police suspect the criminals decided to eliminate all witnesses who could testify against them. Oh My God. Jesus. 48 men and 6 women in 3 locations? Dear God, what sort of psychos are you working for? Look it up. Look it up on American Google, if you can get through.
Oh God. I'm so sorry. Oh God. This is crazy! They used machetes in one location! I'm so sorry. You don't deserve this. Nobody deserves this. I'm so sorry.
Click.
Actually, I don't think I'd have the guts to pull that off. But oh boy, am I tempted.
It's too bad these "regulators" haven't smashed the banksters financial scam of fiat (ie. worthless) currency. $3 ttttrillion (and counting) in taxpayer losses and not one person in prison.
The mind conceives, the body achieves, the spirit manifests.
I would have created a Vm with the goatse guy in the background and let him have and listen to his or her reaction upon seeing it. I would then go on claiming that was the last guy who called here. Want to be next?
Yes I received calls, 3 in about 3 months, they did not stay on the phone long.
1st time - Caller: "You have a problem with your Microsoft Windows".
Me: "I run Linux"
Caller: Hangs up
2nd time - Caller: "You have a problem with your Computer".
Me: "How do you know which one, I have 6"
Caller: Hangs up
3rd time - Caller: "Your computer...."
Me: Hangs up
It is good they have been taken down, after working on helpdesks in the past I imagine many non-technical users would fall for a scam such as this.
I got one of those calls once. It was a woman with a very strong Indian accent, and for no particular reason I decided to pretend it was phone sex ("I have viruses? Oh my God, that's so hot!"). This just confused her for a little bit - I don't think she really followed what I was saying - and she kept on trying to continue with her script. Finally, I said she really needed to find a better job, and she cursed and hung up.
I assume that the people who were scammed had to pay via creditcard. Why didn't they just block that? Worked against wilileaks Sorry if this is a dumb question
I tried to keep them on the phone, as keeping them busy is the worst thing you can do to annoy them. I spent the entire 45 min ride home from my daughter's gymnastics on with them yesterday. She was amused by the conversations. The funny thing is, I don't know how these guys can make any money. I spend much of my day working with people with Indian accents, and I'm pretty good at understanding them. But these guys are inaudible. I have a sense of what they are trying to tell me to do, and I still can't figure it out! "Press the 4-flagged windows key on the lower left quadrant of your keyboard". Forget about when the guy was trying to tell me what URL to go to. I wanted to know what service they were using, and I couldn't for the life of me figure out what URL he was trying to tell me to get to!
OR to any remote desktop service (I've used them before @ work, but not THAT one), so they could get into my system.
* Their b.s. on EventLogs &/or .inf files was enough for me to KNOW they were full of it!
APK
P.S.=> I wonder why they just didn't opt to use RDP native to Windows? It'd do the job for them I'd think @ least! apk
I switched my elderly mother to Ubuntu a few years back and she recieved one of these calls. Acording to her it went something like this.
Caller: This is *** from *** we noticed that there is somthing wrong with your computer and we are calling to help you fix it.
Her: Okay, let me get on my computer. What's wrong with it?
Caller: We have recieved notification from your computer that it has spyware on it. It has notified us and we are calling to help.
Her: Okay, I'm in front of my computer. What do I do?
Caller: First, click on the start button.
Her: I don't have a start button.
Caller: It's the icon on the lower left that says start.
Her: I don't have one of those. I have Yoobunto, Ewebantoo, I don't know, my son put it on here...
Caller: Please just click the button that says "Start".
Her: But I don't have one of those.
This apparently went on for several minutes. Finally she hung up and called me. If she was running Windows, she probably would have gone along with the scam. This is not to say that the problem is with Windows, but rather that, as long as MOST people use Windows, there will always be an idiot to be found and these scams will occur.
But imagine the problems these callers would have if Debian, (or Debian based), systems were the norm...
Caller: Okay, which desktop do you have installed?
Her: Desktop? What do you mean?
Caller: What does your screen look like?
Her: Flowers. I found I nice picture of lilacs.
Caller: Umm... Can you open a terminal?
Her: What's a terminal?
I don't think these scammers would even gotten started.
"On the Internet, nobody can hear you being subtle." -Linus Torvalds
This was on the local TV news troubleshooter segment ("Turko Files") in San Diego a couple months ago.
An elderly woman had called because somebody called her to tell her that her computer had a virus, and he was with Microsoft and could help her remove it. But first she had to "renew" her anti-virus subscription.
As Turko says:
"It's a scam!"
Look, I can help you.
They're going to try to seize your funds. I can shelter them in my escrow account, but you'll have to wire them quick...no wait, use western union, it should be easy.
I'll set up plane tickets to get you out of there. Be at the airport tomorrow by 8 am, the agent will have the tickets for you. I'm pretty sure my travel agent can get them by then, but if not, keep checking back.
We can get through this.
Why did FTC wait until after Bain Capital sold off the assets?
I get scam phone calls or SMS every once in a while. Why can't you just report their phone number to your own phone provider, and after a few complaints they get automatically disconnected if they are on the same phone network, banned if they are on a different one and reported to the authorities and fined whenever possible ? It's much easier to fight than spam since you have their phone number in most cases, like the SMS 'You have a message - call back this insanely overtaxed number'
Non-Linux Penguins ?
Got a call from them last week. Odd think was I had got a few of those "Application X has crashed" a few days previously. Normally I don't bother sending the reports (it's not like they'll actually fix anything) but it's possible I'd hit the wrong button once or twice.
Almost had me convinced for a second, but I was pretty sure I'd never given Mickeysoft my phone number. But had it got to the point where they were asking me to install random stuff, well...
Confucius say, "Find worm in apple - bad. Find half a worm - worse."
At least they were honest:
"Semen Tech. Confidence in a fucked up world."
"The FTC has been aggressive –and successful –in its pursuit of tech support scams," says FTC chairman Jon Leibowitz. "And the tech support scam artists we are talking about today have taken scareware to a whole other level of virtual mayhem." The six operations were mainly based in India, but their victims spanned the globe: most lived in the United States, Canada, Australia, Ireland, New Zealand and the UK. Five used telemarketing boiler rooms to call consumers, while the sixth placed ads with Google which appeared when consumers searched for their computer company’s tech support telephone number. The scammers then pretended to be working for legitimate companies such as Dell, Microsoft, McAfee and Norton, before claiming they'd found a threat on the user's computer that could cost as much as $450 to fix.
The six organizations concerned have been named as Pecon Software, Finmaestros, Zeal IT Solutions, Virtual PC Solutions, Lakshmi Infosoul Services and PCCare247. The FTC is pushing for compensation.
http://m.tgdaily.com/business-and-law-features/66620-ftc-nabs-more-scareware-scammers
I got a call awhile ago, late at night. I was half asleep and couldn't understand their accent, but I heard something about my computer. I hung up, and later woke up enough to realize that it was a scam attempt.
A few days ago, I got a similar message on my answering machine, and I couldn't understand them much better when I was awake. But I suppose it was believable; real helpdesk people are just as hard to understand.
Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
scammers - total idiots are our best customers
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
A direct connection would allow someone to pinpoint WHERE they were coming from - these "remote logon services" though? I don't *think* they do, @ least not directly & not without speaking to (and probably needing a court order for) the remote logon services themselves.
These services act more-or-less, like a proxy...
* I've used "GoToMyPC" in the past on these jobs (iirc, that was what we used, but not sure anyone it was so many years back, around 2007) & it went thru a service, was logged, etc./et al...
The LOGGING part would be possibly incriminating, from some of what I've read here that others saw (for instance, folks here told of "letting them run wild in a VM" & seeing them start to turn off critical services &/or deleting critical system files...)
APK
P.S.=> Personally, I think they were VERY STUPID trying to pull this stunt off... look where it got them in the end, after all!
... apk
... only company authorized personnel can pretend to provide tech support?
Here's a screen capture video of likely these exact scammers - http://veribook.wordpress.com/