My goal was to try to gain some time to prepare a scenario. I explained that it was not possible right not arguing that my wife left the home with my Digipass to sign the transaction. I agreed, of course □ The next question which immediately came was: “ Do you use e-banking applications? Could you log on to pay the $20?“. While the download and installation of the browser, he told me that it will cost me $20 to clean up my computer. Next step: he proposed to download and use Chrome only. The operator started a “ certmsg.msc” and he showed me that the “ Microsoft Authenticode(tm) Root Authority” was expired since 2000! Too bad! -) Same dialog again, the operator tried to convice me that it is very bad for my computer and my security. And we went further with another command. His comments: “ You see Sir, your computer is not protected anymore by Microsoft“. While the system tree was display, he simple typed (or pasted) a nice string which was display after the command completion: Windows Software Warranty Expired!!!!!. According to the operator, all the “ ESTABLISHED” lines were connections back to the hackers, booooh! The next one was “ tree” which is used to display the content of the system disk in a directory tree. He started a command line and the first command executed was “ netstat“. Honestly, those guys are really patient! Once the ID and password communicated, the fun began!įirst remark, they are keyboard masters! The mouse did not move and they handled the Windows interfaces very quickly. Once started, the client was unable to contact the Team Viewer servers due to the firewall. It took a long time because my VM did not had a direct access to the web, I had to change the proxy settings live. From this site, he asked me to download a TeamViewer client and to execute it. Then he asked me to press “ Windows-R” and to type an URL: hxxp://It did not work, no problem: he had plenty of alternatives. Let’s go! He asks you first some basic questions to ensure that you’re in front of your computers (and do this all the time during the conversation). Impossible to understand the URL he spelled. The guy on the line was speaking a very bad english. VM? Check! Recording? Check! The scenario is always the same: The “ operator” presents himself and asks you if you are in front of your computer. When the phone rang, I was not ready but they called again five minutes later. I asked if it was possible to call me back later and they approved! This morning, they called back as promised! This time, my VM was ready but I had no time for them. In a previous post, I explained how I was happy to have been targeted by Indian phishers who called me to report an issue with my Windows computer.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |