To Customer Support To Customer Support

Hacker publishes tech support phone scammer slammer

  • 12 September 2014
  • 5 replies
  • 16 views
Jasper_The_Rasper
Rank
Userlevel 7
Badge +54
Interesting, I would like to see something done against the scammers.
 

Now who's got a 'security problem on your computer'?

By Darren Pauli, 12 Sep 2014  
"Security pro Matthew Weeks has released a Metasploit module that can take over computers running the Ammyy Admin remote control software popular among "Hi this is Microsoft, there's a problem with your computer" tech support scammers.
Weeks' day job is director at Root9b, but he's taken time to detail a zero-day flaw in Ammyy Admin he hopes will be used to fight back against tech support scammers.
 This one is personal: Weeks says he became keen on a countermeasure after he "" ... discovered one of these groups had managed to scam my grandparents and leave their computer an infected mess for me to clean up. So I set out to find out if I could counter an attempted scam with a full fledged remote exploit, and turn the tables on the scammers."
 
Full Article

5 replies

R
Rank
Userlevel 7
This one especially to keep a eye on for sure
R
These scammers are terrible! Called my mom last week and did the same thing to her computer. She didn't know it was a scam until the caller asked her for her credit card number to undo the changes he made on her computer. She hung up.
R
was a scam until the caller asked her for her credit card number to undo the changes he made on her computer. She hung up.
R
We reported the call to the police. We were advised to report the phone number to Callercenter.com too, to warn others. Please remain vigilant everyone.
R
Rank
Userlevel 7
Author: Zeljka Zorz HNS  Managing Editor/ Posted on 15 September 2014.
 
Even if you never had to deal personally with "Windows support" scammers, chances are someone you know did or you have heard about these type of scams.

These scammers usually try to trick users into installing legitimate remote desktop software onto their computer, allowing the scammers to take over the machine and steal information, install malware, or to simply make it look like the computer is having problems with malware and ask for money in order to "fix" it.

There is a number of remote control apps on the market, and among the most popular ones with scammers is Ammyy Admin, which has also been used by the scammers who targeted the grandparents of infosec researcher and Metasploit developer Matt Weeks.

This intrusion inspired him to find a way for (relatively knowledgeable) victims to turn the tables on the scammers instead of just shutting down the scam attempt immediately or stringing the scammer along for a few minutes before doing the same.
 
 
Help Net Security/ full article here/ http://www.net-security.org/secworld.php?id=17364

Reply


Terms & Conditions

© 2004 - Webroot Inc.

We have recently updated our Privacy Policies. We encourage you to read the full terms here.