1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Phishing attacks

Discussion in 'The Lounge - Off Topic' started by nugget, Jun 15, 2012.

  1. nugget
    Honorary Member

    nugget Junior toady

    7,796
    71
    224
    Just wanted to throw this out there as a general thing. As we all know there are many aholes out there wanting access to our pcs and we all know the ones that call up purporting to be from Microsoft. Yesterday just after I left work my son rang me up telling me that a guy from MS rang up, told him he had a problem with the pc and we put in an error report about 3 weeks ago (lets face it, who remembers if you really did). Then he needed remote control to the pc to fix it and run a scan or something (which my son gave him, not really knowing any better) and then started to offer a security package for 1, 2 or 3 years and needed a credit card number. At this point my son told him that I would be home soon and he should call then.

    My son then called me straight away and told me what was going on. I told him to pull the plug ASAP, just rip out the electricity cords. Later on, when I had explained to him what the problem was he started to apologise profusely. I told him to stop and that it wasn't his fault, it was mine. Yep, you read it right, my fault. My fault for not keeping up to date with his ongoing IT education.

    I just wanted to put this out there as a reminder that we, as IT pros, wouldn't fall for this but don't forget that our kids aren't IT pros. Don't forget to keep them up to date as well.
     
    Certifications: A+ | Network+ | Security+ | MCP (270,271,272,290,620) | MCDST | MCTS:Vista
    WIP: MCSA, 70-622,680,685
  2. jk2447

    jk2447 Petabyte Poster Moderator

    5,485
    354
    249
    Are you saying we should..... patch..... the kids....? ha ha Sorry mate I couldn't help myself. That is really bad. There are some people who are just incapable of earning an honest living!
     
    Certifications: BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, VCP4, CCA (XenApp6.5), MCSA 2012, VCP5, VCP6-NV
  3. nugget
    Honorary Member

    nugget Junior toady

    7,796
    71
    224
    I keep trying to patch them but the downloads keep getting rejected.
     
    Certifications: A+ | Network+ | Security+ | MCP (270,271,272,290,620) | MCDST | MCTS:Vista
    WIP: MCSA, 70-622,680,685
    jk2447 likes this.
  4. Monkeychops

    Monkeychops Kilobyte Poster

    286
    15
    25
    Oh so true, security is hugely based on education and awareness.
     
  5. nugget
    Honorary Member

    nugget Junior toady

    7,796
    71
    224
    Just a quick update. The attacker got my son to download a file called AA_v3.exe. This is actually a legitimate remote access tool from Ammyy LLC, much like Teamviewer or Remotely anywhere. the usual attack from these guys using this tool is to install other malware on the pc to scam your credit card details. Check out the video posted by TheProf in another post.

    The good news: it seems that nothing has been compromised on this computer. I've found the file, there seems to be no other sotware been installed (maybe no time to do anything thanks to my son calling me). In any case, I think I will restore the pc from an earlier backup image using Symantec Backup Exec System Recovery.

    The downside is that my main pc seems to be screwed and won't boot because of the crash caused by pulling the plug.
     
    Last edited: Jun 16, 2012
    Certifications: A+ | Network+ | Security+ | MCP (270,271,272,290,620) | MCDST | MCTS:Vista
    WIP: MCSA, 70-622,680,685
  6. onoski

    onoski Terabyte Poster

    3,120
    51
    154
    Scammers always seem to pick on the vulnerable.
     
    Certifications: MCSE: 2003, MCSA: 2003 Messaging, MCP, HNC BIT, ITIL Fdn V3, SDI Fdn, VCP 4 & VCP 5
    WIP: MCTS:70-236, PowerShell
  7. jk2447

    jk2447 Petabyte Poster Moderator

    5,485
    354
    249
    Good work Nugget, nothing you can't handle. Cheers for sharing this with us.
     
    Certifications: BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, VCP4, CCA (XenApp6.5), MCSA 2012, VCP5, VCP6-NV
  8. Theprof

    Theprof Petabyte Poster Forum Leader

    4,570
    68
    196
    This is kind of stuff is hard to avoid for someone who does not understand these kind of scams. I am glad you got everything under control Nugget. Its definitely a learning experience and I am sure next this will be avoided if it happens again.
     
    Certifications: A+ | CCA | CCAA | Network+ | MCDST | MCSA | MCP (270, 271, 272, 290, 291) | MCTS (70-662, 70-663) | MCITP:EMA | VCA-DCV/Cloud/WM | VTSP | VCP5-DT | VCP5-DCV
    WIP: VCAP5-DCA/DCD | EMCCA

Share This Page

Loading...