Regulators Smash Global Phone Tech Support Scam Operation

SternisheFan sends this excerpt from ZDNet: "Regulators from five countries joined together in an operation to crack down on a series of companies orchestrating one of the most widespread Internet scams of the decade. The U.S. Federal Trade Commission (FTC) and other international regulatory authorities today said they shut down a global criminal network that bilked tens of thousands of consumers by pretending to be tech support providers. FTC Chairman Jon Leibowitz, speaking during a press conference with a Microsoft executive and regulators from Australia and Canada, said 14 companies and 17 individuals were targeted in the investigation. In the course of the crackdown, U.S. authorities already have frozen $188,000 in assets, but Leibowitz said that would increase over time thanks to international efforts."

A Horse of a Different Color

[CanHasDIY]

The U.S. Federal Trade Commission (FTC) and other international regulatory authorities today said they shut down a global criminal network that bilked tens of thousands of consumers by pretending to be tech support providers.

... When asked if the FTC had any intention of going after the other international crime ring, responsible for bilking the world's population for trillions, the FTC officials simply replied, "Are you kidding? Those bank guys throw hella parties for us, why would we want to discourage that???"

Where were they getting the phone numbers?

[2phar]

I would like to hear more about how these guys got their phone number lists.. they seemed to have unlisted numbers together with correct names. In Ireland particularly, I only ever seemed to hear about this from people who were customers of a certain large ISP.

Re:Where were they getting the phone numbers?

[houghi]

http://en.wikipedia.org/wiki/War_dialing

Do you really think they care or take trying anything else?

It still amazes me that people here think that cyber criminals are some sort of super efficient people who want to try to have a hit each and every time.

People like this are like spammers. They are not interested in how many say no, as long as enough say yes. They will just start dialing and get as many as possible.

If they get many from a large ISP that is more likely because they are a large ISP and not anything else. People who are with the smaller ISPs are smart enough to just hang up.

Re:Where were they getting the phone numbers?

[Rudisaurus]

In Canada, anyway, they simply scooped the entire national DNC list and used that. Nice, eh? At least the FTC charged them with unfair and deceptive trade practices under the FTCA in addition to DNC list violations. The former probably has more teeth. Enforcement may be a bit more of a problem, however.

Today

[AG+the+other]

They must have missed some. My aunt got a call this afternoon from them.

Wait a second I never heard of this

[fustakrakich]

Are they saying Tech Support calls you?

This must be some kind of joke

Re:Wait a second I never heard of this

[mordred99]

To quote a typical slashdot meme ... "Must be Russia"

I assisted the AFP on one call

[Centurix]

They've rang us a number of times but the last time it came through with a caller ID, which was surprising. I've had a fair bit to do with VoIP here with Optus and I recognised that the number had a block ID which was reserved to Optus, so I used their block allocation lookup and found it allocated to a specific company with an ABN (Australian Business Number) and then rang my sales guy there to see what could be done to track them down. He was surprised and said he would pass it on to their internal scam monitoring department and within half and hour I received a call from them asking me about the call and asking if I would be prepared to talk to the Australian Federal Police, who then rang me 10 minutes after that and grilled me about the call too. Didn't hear anything more about it.

Re:I assisted the AFP on one call

[Macgrrl]

You joke, my husband used to do L2 corporate internet support and was on the phone to a customer on time when the police raided the premises - from memory he put it on speaker so the rest of his team could hear it.

Stubborn can beat them too

[EmperorOfCanada]

I helped a guy who got scammed by these guys but it turned out that he was so stubborn that he just wouldn't do what they wanted and just argued with them that they were wrong. So about all that got hurt was the home page on his browser.

Personally I just wasted their time and would thank them for calling and say my computer was acting up and all slow. I would tell them it was booting but to be patient as it would take a few minutes. Then I would say oh something says it installed something and I need to reboot again. I would do this over and over until they hung up. Didn't take my time as they were on speaker phone and I would only talk to them during compiles.

Also the phone conversational radio show Wiretap by CBC seemed to keep them on the line for a long while.

Re:Please Please Please

[SternisheFan]

Tell me it was that god damn MyFuckingCleanPC (a.k.a. MySlowPieceOfShitPC) company that got busted...

PULLEEEZZZZEE!

"The fake 'scareware' programs included WinFixer, WinAntiVirus, PopupGuard, WinFirewall, InternetAntiSpy, ComputerShield, PC SuperCharger and ErrorSafe," http://www.esecurityplanet.com/malware/ftc-wins-163-million-judgment-against-scareware-marketer.html

Re:Heh, I remember them

[Spottywot]

I've had them on the phone on more than occasion, the funniest time was was probably the third time they called, it was an asian sounding woman who told me my computer was sending them messages that it was infected. I asked which one as I have three, she said I could go to any one, anyway I humoured her to find out what the scam was. She took me to a remote access site (which in itself seemed perfectly legitimate), anyway at this point I'd seen enough and called her out as a scammer, her response made me laugh, 'Hey you!' She said, 'Stick the phone up your ass!' and then she hung up on me. Awesome customer service :) Glad they've been caught.

Recorded the conversation.

[Barryke]

They called me once, i recorded the conversation and trolled the guy. http://barrystaes.nl/scambait/

I always assumed they where in Indonesia and used compromised voip exit servers in their victims country..

Re:Heh, I remember them

[r1348]

Stick the phone up your ass? I see you went for Premium Service...

Re:Well, I'm glad to hear they're being dealt with

[west]

Well, given the arrests, if I get another call, I'll be seriously attempted to answer something like..

Scammer: I'm calling from Microsoft and ....

Me: Wait a moment, its all over Google News in the last hour. They're raiding 23 workplaces all over India for you guys... Oh, right. Google India is probably blocking it until they're finished the raids... Wait... There, I've got it up here on my screen. OH MY GOD!

They've updated. The police have found bodies! OH MY GOD. Lots of bodies. Why? Why? Oh Jesus. [Reading] Police suspect the criminals decided to eliminate all witnesses who could testify against them. Oh My God. Jesus. 48 men and 6 women in 3 locations? Dear God, what sort of psychos are you working for? Look it up. Look it up on American Google, if you can get through.

Oh God. I'm so sorry. Oh God. This is crazy! They used machetes in one location! I'm so sorry. You don't deserve this. Nobody deserves this. I'm so sorry.

Click.

Actually, I don't think I'd have the guts to pull that off. But oh boy, am I tempted.

Re:A pic of the goatse guy when you need it

I would have created a Vm with the goatse guy in the background and let him have and listen to his or her reaction upon seeing it. I would then go on claiming that was the last guy who called here. Want to be next?

Re:Another story on this (plus, a trick they pull)

[bmo]

That's legitimate software, as is Teamviewer, a related remote access and desktop sharing tool.

http://www.teamviewer.com/en/index.aspx

Remote tools like this are used every day by remote sysadmins. The scam was to get you to install it yourself so they could connect from their end, take your banking information, and clean out your accounts. It looks like the reason why they picked Amyy was because the license fee for "unlimited simultaneous connections" is relatively cheap ($99 for top tier) compared to Teamviewer's rather expensive license for unlimited connections - $1499.

And then through the remote tool, they would make your machine unbootable when everything was done. There have been people who have let these guys run loose in a VM to find nothing, only to watch them start disabling services and delete system files.

Teamviewer, Amyy, other remote access/desktop sharing tools are third parties to all of this and aren't part of the scam.

--
BMO

How did they pay?

[spud1955]

I assume that the people who were scammed had to pay via creditcard. Why didn't they just block that? Worked against wilileaks Sorry if this is a dumb question

Grandma's on Ubuntu... Confusion ensued...

[goodgod43]

I switched my elderly mother to Ubuntu a few years back and she recieved one of these calls. Acording to her it went something like this.

Caller: This is *** from *** we noticed that there is somthing wrong with your computer and we are calling to help you fix it.
Her: Okay, let me get on my computer. What's wrong with it?
Caller: We have recieved notification from your computer that it has spyware on it. It has notified us and we are calling to help.
Her: Okay, I'm in front of my computer. What do I do?
Caller: First, click on the start button.
Her: I don't have a start button.
Caller: It's the icon on the lower left that says start.
Her: I don't have one of those. I have Yoobunto, Ewebantoo, I don't know, my son put it on here...
Caller: Please just click the button that says "Start".
Her: But I don't have one of those.

This apparently went on for several minutes. Finally she hung up and called me. If she was running Windows, she probably would have gone along with the scam. This is not to say that the problem is with Windows, but rather that, as long as MOST people use Windows, there will always be an idiot to be found and these scams will occur.

But imagine the problems these callers would have if Debian, (or Debian based), systems were the norm...

Caller: Okay, which desktop do you have installed?
Her: Desktop? What do you mean?
Caller: What does your screen look like?
Her: Flowers. I found I nice picture of lilacs.
Caller: Umm... Can you open a terminal?
Her: What's a terminal?

I don't think these scammers would even gotten started.

Re:Heh, I remember them

[tehcyder]

My dear old mum got them once and had them on the phone for about an hour (she was bored).

They finally hung up when she told them she had made a mistake, and the screen she was looking at was not actually a computer monitor, just the TV.