"You have malware" Phone Call Scam – First hand account – and a 'heads up' by Hootiegibbon

New scam on old streets…

This was reported by a good friend of mine on a PCLinuxOS forum. Here is the link to the entire thread

Peoples of the wonderful PCLinuxOS forum,

I had heard of this scam although I had not previously been a target, I live in the UK but understand this is becoming a problem the world over.

This evening I received a call from a lady – the call originated from what sounded like a call center.

The lady asked for me by name.

She went on to explain that my computer was sending out Malware, she gave a fairly comprehensive explanation of malware and that it had been spotted by there R&D department who monitor ‘these things’ for 7 countries.

I started to ask some questions , who they were, this changed slightly during the conversation with webtec design web tech and I think Web sec (the caller ‘fluffs’ over this information and tries to redirect your attention back to the mater t hand, your infected PC.

I managed to get her to confirm that her call was connected via a VOIP system and that they are based in India.

The conversation became some what disjointed – as she became suspicious of my probing, i then turned to speak about the ‘infected computer’ she explained taht there was a lot of malware being sent from my windows computer and this in turn was infecting other computers…

at this point I said (and I would have stayed with the call further to attempt to obtain further detail about this scam unfortunately to really could not spare the time ) my windows computer? she said yes, it is unfortunately infected, I stated to her that I am really interested now, she said we can help, – I stated no, not interested in what you are proposing but interested as I DO NOT USE WINDOWS PC!

The line went dead, who’d a thunk it eh?

So I post this as a warning and heads up, please tell your friends that are still using windows I was unable to get to the route of the scam, but yu can bet it involes eithetr a credit card , advisng what iP address you are at for remote help, or bank details to pass verbally.

Please link to this if you like from other sites or quote me, this kind of blatant exploitation of those less aware should be stamped out, the only way this can be done is by raising the awareness of it

Jase

Thanks for the heads up Jase.

Andy

Lets see what this causes…

Hi all.

After several hours of work here it is… First post on my own WordPress Blog… Why did it took me so long? I ran into difficulties… No not on the software side. It was my fault completely.

First problem was:

Due to the lack of knowledge I had major problems with adding database and user to the MySQL. WordPress needs that… It also needs the created user to be “linked” with the created database.

Cyryl saved the day. Again…

Adding database and user to the MySQL and linking them togeother...

5 commands as user in the konsole:

mysql
Opens mysql command line interface

CREATE DATABASE somedatabase;
Creates database named somedatabase.

CREATE USER 'username'@'localhost' IDENTIFIED BY 'MegaStrongPassword';
Creates user named username with a MegaStrongPassword as a password on a localhost.

GRANT ALL PRIVILEGES ON *.* TO 'username'@'localhost';
Grants the username user access to databases on the localhost machine.

grant all privileges on somedatabase.* to username@localhost ;
Links username user with a somedatabase database on a localhost machine.

After this it was fairly easy… till I tried to choose the theme for my blog…

That was my second and last problem…Boy was that a dilemma...

“Does this theme makes my blog look fat…”

It took me sometime to configure the basic features of the WordPress blog software but it took me few hours to download and change the themes on and off just to see which of them look better… I couldn’t decide so I had to ask few people for help and… Here it is…

The theme is called Red Evo Aphelion and it was found among circa 1300 other themes on the WordPress site.

After that it all was easy. So far I like the WordPress software. It has many interesting feature. I guess I have to learn more about the plugins and start using them but there are so many of them I have no idea where to start…

There are many things I am planning to do with my blog in the future. We will see how that goes. But that’s future.

In the past there were few things that I had to accomplish to get this place up and running… What are they?

I was collecting some old computer parts and after a while (2 or 3 years…) I have decided yhat I have just about enough of them to build my own “server” from the scratch. And so I did. Its not a power demon nor is it a speed demon. No its not. Its a regular computer. Comparing to Your gaming machine its a pocket calculator. BUT it works.

Specs of this FrankenPuter machine are:

CPU: Intel(R) Pentium(R) III Coppermine processor 700 MHz
RAM: 256 MB
SWAP: 1 GB
GPU: nVidia Corporation NV5M64 [RIVA TNT2 Model 64/Model 64 Pro] (rev 15)
SND: None
WIFI: None
3G: Huawei E160G modem
LAN1: Realtek Semiconductor Co., Ltd. RTL-8139/8139C/8139C+ (rev 10)
LAN2: National Semiconductor Corporation DP83815 (MacPhyter) Ethernet Controller
SATA: VIA Technologies, Inc. VT82C586A/B/VT82C686/A/B/VT823x/A/C PIPC Bus Master IDE (rev 10)
HDD: Some 10 GB Oldie
MSE: Some PS2 No-Name
PRNT: Lexmark x2650 AIO Device

Server runs my favorite Linux distribution – PCLinuxOS. Using its repositories I have managed to change this old beast into:

A) First and main firewall for my network
B) Internet Connection Sharing server
C) DNS server for my local network
D) Printing server for my LAN computers
E) Scanner server for my LAN computers
F) Apache HTTP server with WordPress blog on it
G) Remotely controlled SSH server from WAN and LAN side
H) LAN IRC server
I) LAN IRC Services
J) Pop3s and smtps e-mail server for LAN computers
K) Fail2ban brute-force preventing barrier
L) And few other network services…

Ports for the HTTP and SSH servers has been changed to avoid the botnet attacks. Some other precautions were also made to keep the creepy-crawlings out of here.

As You can see its not a very powerful machine and yet it does number of impressive things. Let me add here that server does not runs any graphical desktop manager. It runs Command Line only…

Why have I done it all? Just to prove to myself that I can.

What is it for? Nothing really. I am not planning to become “.com millionaire” anytime soon. Its just fun. Fun and learning are main goals of this blog. Fun and learning which in the future can get me a job “that pays the rent”.

What can be found here? Crapology. BS, fun and some nasty rants in pure form at least so far… Later I am planning on adding my videos and manuals.

Lets see what this causes…

Andy

P.S. 1 Cyryl – thanks Buddy You have made it a lot easier!
P.S. 2 Did I mentioned I hate blogs?