“Your computer needs maintenance” scams.
I had a client that I haven’t heard from for a while call. He had been web browsing and got a persistent window stating that his machine needed attention. SCAM SCAM SCAM.
When he called the number, he got an offshore call center. They convinced him to allow them to remote into his machine. The remote software was a fairly well known service (not Teamviewer) The next step was to try to convince him that he needed upwards of $500 worth of service. Fortunately he realized it was a scam and gave me a call.
When I looked at his machine, they still had a connection via the remote software. I immediately killed that. The next step was to check for files that had been written to the machine that day. I found a couple of files including the remote software which I removed. I also ran an antivirus scan.
The scary part about this is that they had access to his machine for some period of time. It would have been relatively easy to plant malware or download sensitive information.
* Warn your friends and family about these scams.
* NEVER allow someone you don’t know to remote into your computer.
* If you did allow them to remote in:
** Run full virus scans
** Consider changing all of your passwords
** Keep an eye on your credit status via an identity protection service or a credit reporting service.
* Understand that once someone has accessed your machine, you can never be totally sure it is clean.
He was lucky that it was a maintenance scam and not ransomware.
Properly executed cloud backups will help protect you in the event of a ransomware attack. (Carbonite, One Drive etc.)
- A nasty ransomware trojan
- Be careful whose wireless you access
- Sending a fax without a fax machine.
- Scheduled restart of uvnc_service to restore connectivity when away with UVNC VNC server
- Contingency plans for laptop failures while on the road
- I heard a radio advertisor telling people to email their credit card info to him
- site monitoring with Ruby on Rails
- Earthlink Wireless – AAAArrrrrghhhh!!!