Slashdot Mirror
Listen To a Microsoft Support Scam As It Happened
itwbennett writes You know full well that Microsoft will never call you and ask to "access your computer" to help fix a problem. Yet this is a ruse that many unsuspecting computer users fall for and wind up with their machine hacked. CSO writer Steve Ragan, turns the tables during a phone call with a scammer — and he records it all for us to hear. Do yourself a favor and play it for your parents.
And here's a written transcript of all actions taken by the Indian government to stop this scam:
I've told my parents so many times not to click on links in an email.....now you're telling me to send them a link and have them click on it?
Had one of these (and only one)... told them I only had Mac's at home, and the guy got belligerent and said I was lying, then finally after telling him that over and over for a good minute he basically said FU and hung up. Can't imagine what they'd say if I said I only ran Linux, or something really obscure ("Sorry, I only run OpenVMS"). =D So yeah... guess their scheme falls over pretty quickly if you don't have a Windows box...
Do not click this link. You have been warned.
There are ninety (90) scripts trying to run on that page.
fake support calls are eerily similar to 419 scams in confidence artistry but it bears remembering why and when these scandals have taken place. In nigerias case oil discovery led to british and american interests propping up a series of dictators favourable to their interests yet despotic to their own people. After a few violent uprisings, oil export dropped to 40%, and largely has never returned. nationalized exports, systemic corruption, and a dearth of unemployment with a sizeable population of educated adults led to the 419 artistry and arguably an increase in piracy.
in Indias case, rampant corruption and high unemployment combined with a tech industry that favours low worker pay and aggressively combats everything from workplace safety to union organization and benefits has led to the tech support scam, born from the confidence and trust of americans and europeans accustomed to the dulcet tones of the south asian tech support worker.
Good people go to bed earlier.
... and depending on my mood I have several strategies;
1. Just tell them you only have Linux, they'll hang up immediately. ... So can I speak to your manager. (So far I've never got a manager.)
2. Musical hold, put the phone next to a speaker and go on with your life.
3. Tell them you have several computers running various Windows versions, which one did you mean... do you have a hostname or IP address so I can narrow it down? You don't? So how do you know it was my machine again? Really?
4. Pretend to follow along with their instructions, honestly the most time consuming and least satisfying.
But the problem is not with us, it's with Joe User who for some reason is unaware that Microsoft isn't phoning everybody. Never underestimate the power of human stupidity.
XML is a known as a key material required to create SMD: Software of Mass Destruction
I received one of these calls a few weeks ago. After the scammer informed me that my computer was compromised but he was going to help me solve the problem I thanked him for his help and asked him which of my computers was infected. He seemed surprised by the question and said, "You have more than one computer?" I replied that I have several and surely he must be aware of that because he had just described the extensive monitoring Microsoft was doing. He said it didn't matter which one; just go to one of them and follow his instructions to get rid of the infection. I said that surely I need to go to the one that is infected to clean it, but he again claimed it didn't matter which one I went to. I pushed the point that if his monitoring was able to detect an infection then surely it must be able to identify which of my computers was infected. He started becoming beligerent, almost shouting that it didn't matter which computer had the infection but that I needed to go to one of them immediately so he could help me clean it. At this point I called him a liar and asked how he felt about lying to and stealing from people. He really started yelling at that point, and I just hung up. I haven't heard back yet.
http://youtu.be/GVQoAlQrnSg
The problem is, we support & enable "stupid" now, instead of letting them succumb to natural selection like they would have in the past.
If you could reason with religious people, there would be no religious people
depending on his locality, that might be illegal speech.
(and yes, there IS such a thing in the US too.)
Better story:
dont tell them that you are onto them. Instead, monitor the honeypot and see what they install later, what they use the compromised VM for, and build an actual case against them.
It's one thing to say "these people are taking over computers". it's entirely another to clearly show what they do with the computer afterwards, and build a profile that can be used to detect compromised systems based on activity patterns, then publish.
Crap, i clicked on it.
I've forwarded that e-mail hundreds of times!
/the world will always build a bigger idiot
In the future, I would want to not be isolated from my friends in the Space Station.
My father used to run ubuntu now hes on fedora. My mother has been on a mac for the past 5 years. There is no windows in their house. When he gets the scam call about problems with his "windows" he tells them he doesn't have windows, only doors. It takes them a second to figure it out and then they hang up. Its pretty comical, and if more grandma's grandpa's had linux desktops this wouldn't be a problem. All they ever use the computer for is checking email and surfing the web anyway, if you guys haven't moved your parents off of windows by now, shame on you!
No, I don't believe, a threat to curse somebody can be prosecuted in the US. Not even if you are cursing the President.
Yes, that would be more responsible. But it requires much more involvement — with you having fun only for the first few minutes of it.
I used to do this to spammers: pretending to be interested, collecting responses from their real e-mail addresses, identifying their real web-sites, &c., then trying to get them shut down for good based on all the evidence I collected. It only worked in about 10% of cases (in late 90ies) and now I just post the spam to SpamCop and feed it to my own Bayesian filter...
In Soviet Washington the swamp drains you.
These guys alway call with spoofed caller ID info. Why? Because its easy. I really can't believe that it not possible to create a REAL caller ID system. But the TELCO's will *itch about regulatory interference in their business. I say make them LIABLE for passing on bogus ID info and they will find a way to make caller id work. Calls from overseas? Just ID them as OVERSEAS calls. Co that sell spoofing services, well if the TELCO is liable, they wont allow spoofed ID on outbound trunks. They would rather profit from a BROKEN feature than actually create a working one.
one day I shall invent a tool that allows you to kill and mangle people via telephone, and then I can enjoy life again.
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Even more epic fail, I've worked on the MS campus a lot, and in fact installed much of the security hardware. I take them on a mental tour of the campus, trying to get them to tell me what building they're supposedly working in, ask them whether the Ms Pacman machine is still in that stairwell, etc. It can be fun.
"Think about how stupid the average person is. Now, realise that half of them are dumber than that." - George Carlin
My grandmother did them one better....
> "Hello, I'm [her name] from Microsoft Support Service..."
GM: "Sorry, but I don't have a computer"
I'm starting to think GNU is the problem with "GNU/Linux" these days.
Maybe 3 years ago I played along with such a caller. I run Ubuntu, but didn't say anything to them about what o/s I was using. When he asked me to visit a web site and download a Windows file from a web page, I laughed inside, thinking nothing would happen. I downloaded the .exe from a throw-away Ubuntu VM I had. Unexpectedly, Ubuntu downloaded Wine, installed it, then ran the .exe file. I was both impressed and scared that Ubuntu had done this automatically to run the .exe file. This resulted in a completely empty Windows (Wine) desktop, to which they of course quickly tried to connect. I kept "accidentally" disabling their control, so they could only look. When I finally gave them access, they were very confused that it had none of the usual Windows applications and menus they were expecting to see, nor did their usual password changing and locking work. More and more people on their end of the call were talking on the phone, trying to figure out what was going on.
After nearly an hour on the phone, I had enough and told them I was a software developer, and they hadn't scammed me. They swore at me and hung up. Immediately, I got a phone call from someone else saying he was calling to help me unlock my computer for a fee. Obviously as soon as they lock a desktop, they must trigger something in their call system so someone else calls back to earn some money.
You must be new here.
I received the same call, but with a guy's voice, far eastern accent. he had me for a second with the "your IP address is sending out bad traffic" & they were getting warning errors on their end.. I was at work on the company's windows 7 box, but was wondering why *I* was getting the call instead of IT.. I decided to play along, I screw him up at the *superkey +r* imagining if I were working on my openbox debian machine; me: "ok, it opened my home folder, what next?" he, seeing that wasn't working, tried to navigate through the c:/ drive; him: ..slight pause .. "ok ok, close that out, I need you to click the windows icon in lower left, then computer, then c:/ drive"..
me: "I don't have a windows icon, I using openbox & a home folder"
him: "wait you're at home right?"
me: "no I'm at work, IT should be dealing with this"
phone line: ::CLICK::