New
#1
The "Help Desk" Scam
I figured I'd put this here for wider exposure but understand it may be moved elsewhere. With that...
In my Intro to Information Security class one of my classmates who’s also a systems analyst, brought up a phone call she got at home. She stated a company calling themselves "The Help Desk" called her stating they noticed she had issues with her PC. Stringing them along she let them walk her through the process… to a point, which resulted in them directing her to the event viewer, which logs the daily operation of your PC.
Anyway once they pointed her there they asked if she saw any of those yellow and red triangles and circles with exclamations points, stating yes, they than sounded panicked, and informed her not to do anything to the PC, but instead directed her the command prompt where she was to type in an IP address so they could “scan and fix” her PC.
She obviously knew this was a scam but wanted to see where it went. No, she wasn’t as stupid as to type in the IP address.
Anyway I thought I’d pass this along as anyone familiar with the event viewer know there’s always events listed under the Diagnostics and Performance logs with those yellow and red exclamation marks - this is normal system behavior; thus someone not familiar with PC’s could actually fall for this kind scam and have their system or personal info hijacked, compromised, or stolen.
Please be aware and pass this info on to your family, friends, and colleagues.
BTW the easiest way to get to event viewer is to type "eventvwr.msc" (without quotes) in the search box, click Application and Service Logs, Microsoft, Windows, scroll down to Diagnostics and Performance, click the arrow and click logs. Surprised? You could try chasing those down, or unless you’re having serious issues, you can ignore, delete or archive them.
- Check here for clearing them - Clear event logs
- See this post for controlling the log size - How To Clear Administrative Events Log - Event Viewer
- You could also see this one click shop tutorial - Event Viewer One Click Clear
At any rate there's always something in those logs; and apparently scammers are using it to their advantage.
Peace