Slashdot Mirror
Turning the Tables On "Phone Tech Support" Scammers
mask.of.sanity writes A security pro has released a Metasploit module that can take over computers running the Ammyy Admin remote control software popular among "Hi this is Microsoft, there's a problem with your computer" tech support scammers. The hack detailed in Matthew Weeks' technical post works from the end-user, meaning victims can send scammers the hijacking exploit when they request access to their machines. Victims should provide scammers with their external IP addresses rather than their Ammyy identity numbers as the exploit was not yet built to run over the Ammyy cloud, according to the exploit readme. This is much more efficient than just playing along but "accidentally" being unable to follow their instructions.
Providing your own IP address to a criminal so you can trash their computer just doesn't sound like a good plan to me.
THEM: Hi this is Microsoft and...
US: hang up
Done. Fuck this war.
Politics; n. : A religion whereby man is god.
"Hi, we've detected a virus on your machine etc etc"
"Yes, that's mine, I've been testing it. Can you tell me how and when it was detected please?"
".....[click]beeeeeeeeeeeeeeee"
Wanna buy a shirt?
https://www.redbubble.com/people/stealthfinger/shop?asc=u
I will love reading about anyone who managed to destroy a call centre of these scammers and get them out of business. Myself, I would fear bad legal consequences if I did it, because hacking into their computers isn't going to be legal just because they are scammers. Now telling them that you just hacked into their computers and asking them to open log files to show evidence, that would be fun.
There's not really anything they can do apart from try to get revenge on your machine. "Hi international police, well we we're trying to scam this guy and he somehow managed to switch the flip and gutted our entire organisation........please stop laughing"
Wanna buy a shirt?
https://www.redbubble.com/people/stealthfinger/shop?asc=u
Scammers, by definition, do not follow the law. What makes you think they'd concern themselves with something as petty as a Do No call law?
And yes, you should consider yourself lucky. These kinds of calls are becoming more frequent and MUCH more aggressive. I had one scammer call me back over a hundred times in one day when I hung up on him. I eventually just routed all incoming calls to my fax machine.
"Tell me doctor, with all of your defenses, are there any provisions for an attack by killer bees?"
One thing Microsoft could do easily and cheaply, which would eventually end this "Calling you from Windows and you have a virus" scam, is to have a short mention about this being a scam on the front page of their website. A single sentence would suffice.
When you get called by the indian call center employee, who for most of them believe they are working for a legitimate business, mention how the caller is NOT really affiliated with Microsoft because their website say it's a scam. "See for yourself !" and hang up.
The actual pirates can probably not do the mass phone call themselves and still rack up enough money, which is why they hire call centres to do it for them, and why they also take precautions to show them some pretense of legitimacy. If the call centres stop working with them they'll go away.
Maybe we deserve this world ?
If it's anything like how they pronounce lieutenant, then I don't know how British pronounce Brighton either.
Reading over your comment it just occurred to me that a lot of novice users could very well potentially have an argument for why they would believe that Microsoft "knows" of their problems -- every time Windows XP had some process crash it would pop up a modal asking if you wanted to send a crash report to Microsoft. Pretty much every OS I've worked on does this, Ubuntu will even ask if you want to report a problem.
If I never used, or rarely used a computer and didn't come across these messages often it would not be a large jump of logic to presume that clicking "yes" on that modal would open a ticket on some help desk at Microsoft and some lowly tech-support would call you up some time in the future to fix the issue for you.
Them: Hello, this is Microsoft. We have detected a problem with your computer.
Me: Really?
Them: Yes of course. Do you see your "start" button?
Me: No
Them: It's in the lower left corner.
Me:The lower left corner of what ?
Them: The lower left corner of your computer.
Me: The lower left corner?...........when viewed from where ?
Them: From the front.
Me: OK, let me see.....All I see is a little sticker that says Intel Inside on the lower left corner.
Them: I don't understand.
Me: The computer has a little sticker on the lower left corner. but no start button.
Them: No, I mean the lower left corner of your monitor.
Me: Wait I'll have a look..........I don't have a start button on the lower left corner of my monitor either. I do see a little sticker that says "Infant Optics" (it's a baby monitor) Them: click
I had a "Microsoft" guy walk me through installing TeamViewer. After twenty minutes of goofing with him, I said it was installed (which it already was).. When he asked for my team viewer ID, I asked for him to give me his ID first. They didn't and were mad I wasted their time. But.. it makes me think that the TeamViewer company might be able help track down these jerks.
I like to get these scammers on the line for as long as possible, but without wasting my time. So far, what I've seen to work well was "Oh, my computer just crashed, I need to reboot" and "Now windows is applying updates". This means they'll wait without me having to think of stuff to tell them. Any other effective tricks?
Opus: the Swiss army knife of audio codec
I never have these guys calling me, but several of the stories here mention these guys shouting profanity and abuse. I wonder if it is some sort of defense mechanism to keep themselves from realizing how low they are to be using these fraudulent tactics on innocent people.
I keep an old XP laptop loaded with furry porn, pictures of cows and pigs being slaughtered, BDSM porn, transsexual midget porn, stuff from rotten.com/ogrish like beheadings, gential mutilation, etc., set on random rotate every second for the desktop with a nice fading transition, everything locked except the remote assistance tool, and when they call I put that machine live and let them in.
The extortion begins, and then they see something that invariably offends the piss out of them while they're forced to watch a constantly-changing desktop wallpaper they can't stop, and the extortion ends with me laughing in their ears.
Endless entertainment. I even got a "You're the sickest thing existing on this planet." from some chick that was playing the scam.
I lol'd hard at that one.
Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
ugh, this is a real disgrace on India. I think this scamming here is frequent from India because there is little to no regulation, law or enforcement of it if there were one about scamming 'foreigners'.
This is how most of the Indian GDP were composed of.
It is part of their culture. In the university that I went to, 90% of the Indians are cheating. This is in a electrical engineering master's program.
That's why our organization will not hire any H1Bs.
New Economic Perspectives