This paper was presented at VB2014 in Seattle, WA, USA.

Tech support scams have been going on for a long time, and despite all the attention they’ve received, they are only getting worse.

The classic fake Microsoft cold call is no longer the only technique used, as it is far more effective to have marks call with a problem.

Scammers are diversifying their persona using deceptive ads and pop-ups, phishing scams, and even targeted campaigns for special events such as the end of the tax season.

As the scams get more sophisticated (Mac OS and Android are on their list too), the risks for potential victims have increased. Documented instances show that while ‘scanning’ the computer for viruses, the crooks scrape any personal documents they can lay their hands on, opening the door for disastrous identity theft issues.

While education and awareness go a long way to reducing the number of victims, security researchers can help out too. This paper will show how to build your own honeypot to collect everything the scammers download on the machine and track their geolocation down to real-world coordinates – even when remote software logs are disabled or the connection is routed through a proxy.

Finally, I will present real intelligence collected using the previously described honeypot.

More info on Tech Support Scams 2.0: an inside look into the evolution of the classic Microsoft tech support scam

  • Why It’s Never Been a Better Time to Automate

    It’s why our customers consistently award us the most five-star service and support reviews in the industry. And it’s why we’ll continue to lead the industry toward a more innovative and secure future ...

  • The Weekend Jolt

    This enterprise goes live on Friday, one day before it is slung around America and the world via email ether. The Mindful Author wishes he had a link for a piece that, alas, is not published prior ...

  • HOTR: Don’t get over-optimistic on COVID-19 vaccine news

    Nov. 10, 2020, © Leeham News: Pfizer yesterday announced it’s on track to produce a COVID-19 vaccine that appears to be 90% effective in trials. The company is one ...

  • Tech News

    Latest Call of Duty games now too big for 500GB PS4 hard-drives Activision is warning Call of Duty fans they may need to free-up space on their 500GB PS4 hard drive… ...

  • News Scanner

    Qualcomm opposed to Nvidia's $40B takeover of... Apple Pay—the company’s flagship mobile payment platform—has grown at a breathtaking rate since its introduction in 2015. Apple Pay transactions ...

  • Top Bitcoin Robot 2021 – Legit and Accurate

    However, as more robots have cropped up over the years, so have scam products which have stolen ... discovered which ones appear legit, and the scams that you should steer clear from.

  • ZDNet Government

    You will also receive a complimentary subscription to the ZDNet's Tech Update Today and ZDNet Announcement newsletters. You may unsubscribe from these newsletters at any time. You agree to receive ...

  • Krebs on Security

    Cybercriminals have long relied on compromised Web sites to host malicious software for use in drive-by download attacks, but at least one crime gang is taking it a step further: New research ...

  • Hero Complex

    Science fiction, comic book, fantasy, and video game news. Organizers have announced that San Diego Comic-Con 2021 will be a virtual event again, but they’re planning a three-day, in-person ...

  • The 2016 Survey: The Future of Jobs Training

    Capitalism itself is in real trouble. This page holds the content of the survey report, which is an organized look at hundreds of respondents’ elaborations derived from an analysis of 1,408 responses.

  • Krebs on Security

    Microsoft today released an emergency software update to plug a critical security flaw in all supported versions of its Internet Explorer browser, from IE7 to IE 11 (this flaw does not appear to ...

Leave a Reply

Your email address will not be published. Required fields are marked *