How the Microsoft/LogMeIn support scam works

Powered by SC Magazine
 
Page 1 of 2 | Single page

Comment: Don't fall for dodgy 'support' calls.

On Friday I experienced first-hand the methods by which scammers are attempting to dupe Australians into paying for software to remotely “fix” computers that just ain’t broke.

The call came through to my home office via VoIP, and while I was in no way fooled by the scam, I could well imagine the less computer literate making a horrible mistake – hence my duty to report the experience.

The caller claimed to be from the “computer maintenance department” of a company called “Online PC Manager” (the web site for which can be found here).

According to the caller, I was registered in “Windows Operating Services” (excuse me?) and was being called because of bad data “installed on all Windows computers”.

Remember to sign up to our Security bulletin for the definitive summary and analysis of Infosec threats.

In a weird twist of logic he asked me if I had a computer, and whether it ran Windows. These people aren’t trained particularly well. But the script does get a little more clever once you buy (or pretend to buy) their story.

The offer of remote support starts with asking the victim to press the Windows button and ‘R’ – which brings up the ‘run’ dialogue.

The victim is then asked to type in ‘inf’, which takes you to a Windows Explorer window listing files used to install the Windows Operating System.

These, the scammer said, are the files slowing down my system, downloaded from “watching videos on the internet”.

He was offering to connect me to a “technician” to fix the problem before I stopped his sales pitch.

Other users have reported being asked to type “prefetch” into the run dialogue and being given a pin number to use in a LogMeIn session to give the ‘technician’ access to the computer.

I didn’t quite let him get that far, as I thought it best to come clean with him, tell him I knew what was going on, and see if I could induce him to tell me who he was working for - it sounded like a crowded call centre in the sub-continent to me. (And mate, if you happen to be reading this, my offer still stands!)

I have included some of the transcript from our conversation on the following page.

But more importantly, what you need to be telling your less tech-savvy friends and relatives is that companies like Microsoft and LogMeIn don’t randomly call home users offering remote support.

Unsolicited "support" calls are most likely a scam,aimed at convincing you to buy security software you don’t need, and maybe even stealing information from your PC.

iTnews journalist Liz Tay gave her mother some great advice on how to deal with these guys. String them along, and just when they think they have a sale, ask if the Windows button is supposed to look like an apple.

What are your tips for dealing with remote support scammers? Comment below.

Copyright © iTnews.com.au . All rights reserved.


How the Microsoft/LogMeIn support scam works
 
 
 
Top Stories
Beyond ACORN: Cracking the infosec skills nut
[Blog post] Could the Government's cybercrime focus be a catalyst for change?
 
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
Xero prepares for key feature coming in 2015
Dec 19, 2014
Xero users will be able to track how their business is comparing to other Xero users.
More 4G from Optus in Darwin
Nov 21, 2014
Click to see where Optus has expanded coverage to the suburbs near Darwin.
Optus steps up regional 4G coverage
Nov 20, 2014
Once 700Mhz services are working, Optus claims regional users will have a "faster and more ...
This Huawei 4G phone costs $99
Nov 12, 2014
The $99 Huawei Ascend Y550, available through Vodafone, enters the budget market as one of the ...
4G smartphones: Microsoft's Lumia 830
Nov 7, 2014
Microsoft has announced its flagship Windows Phone, the Nokia Lumia 830 4G, will be available in ...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  38%
 
Your insurance company
  4%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  3%
 
A Federal Government agency (ATO, Centrelink etc)
  19%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1890

Vote
Do you support the abolition of the Office of the Information Commissioner?