We recently tried to assist a client who was caught by a world-wide scam. This is the first we’ve heard of this scam hitting in Delaware. It includes the telephone version of spear-phishing.
Bottom line: do NOT trust any unsolicited calls about your computer being infected with a virus. University of Delaware folks, check with your departmental tech support or with the IT Support Center (http://www.udel.edu/it/help/request/, consult@udel.edu, or 302-831-6000) if you have questions about computer viruses.
Here’s what happened. (Names redacted so as not to even hint at who the victim is, particularly when you see how gullible he has been.)
Two weekends ago, one of our clients received a phone call from someone who identified himself as an employee at a special Microsoft approved partner in New Delhi, India. The caller told our client that his computer had polymorphic viruses and that the only way he could get rid of them was to pay them $250 to log in remotely from New Delhi and clean the computer. Our client fell for the pitch, paid the money, and gave the caller access to his computer.
When our client told us about this event after the fact, we told him that this didn’t sound kosher at all. We went to McAfee’s site and downloaded several of their free antivirus utilities, burnt them to CD, gave him the CD, and told him the sequence to run the utilities. We also told him to install McAfee or Norton antivirus immediately after having run the McAfee utilities.
Our client did not disconnect his computer from the network before he started running the McAfee utilities. As soon as he started running the McAfee Stinger utility, he got another call from New Delhi, India. Clearly, the scam involved installing spyware that alerted the scammers to the attempt to really clean the computer.
This time, the caller claimed that his company was not only a Microsoft Partner, but also a McAfee and Norton Partner. The caller assured him that the only way to truly and finally get the polymorphic viruses off his computers was to pay $250 per computer, plus $75 to have them install Norton Antivirus remotely. He paid them $575. He saw them take over his computers, installing and running things remotely off of his Verizon FiOS connection. He said they spent over three hours to remove over 22,000 things from two of his computers.
Clearly our client was overly gullible and should now contact his credit card company and the police to report the fraud.
This kind of scam has been reported elsewhere. Three examples:
- “Call from Microsoft a scam, police say”
http://www.salina.com/news/story/scam-2-15-12 - “Schemes & Rip Offs: ‘Tech Support Scam’” http://www.valleynewslive.com/story/17056645/schemes-rip-offs-viewer-mail-tech-support-scam
- “Fylde computer ‘fix’ con”
http://www.blackpoolgazette.co.uk/news/fylde-computer-fix-con-1-4314652
What is particularly troubling is that, as the Blackpool Gazette story indicates, these scammers often target certain geographical areas (area codes). If this is the first example of this scam we’ve heard of in Delaware, will others in Delaware receive similar calls?
We had a similar call at our house a couple of weeks ago: a man informing us that our computer was infected and he would guide us through the steps to clean it. It didn’t occur to us to take it seriously but I asked for a phone number to call him back (he provided a number with a Washington State area code … I didn’t bother trying it or checking if it was a Microsoft number, and I long since discarded it) and then hung up. Anyway, the targeting of geographic areas seems to fit! Tom
Yes, we’ve had one reported case in FLL. Similar to Tom, we also
traced the call back to Bainbridge Island, Washington. Fortunately,
our user did not fall to the hoax. She also resides in the 302 area
code.
This thing is not Funny at all that even if a person has installed with the special services of “do not call” registry, that poor soul may still receive numerous calls on his land line or his cell phone from an unknown person or a computer that has dialed the number randomly. Phone scams are the easiest and most effective way of playing on with your nerves nowadays. All types of frauds, cheating, theft online and from credit card robbing to anything else is committed behind the curtain of phone scams.