I saw a video of exactly what you're describing. The guy was fast enough to spin up a Win VM and play along for a while. They of course wanted to charge him for the service. ;)<div><br></div><div>You can probably find it on YouTube. I forget where I saw the link... I am not your google monkey ;) or !LMGTFY<br>
<br><div class="gmail_quote">On Fri, Jun 22, 2012 at 4:03 PM, Rick Troth <span dir="ltr"><<a href="mailto:rmt@casita.net" target="_blank">rmt@casita.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
May I quote you on this?<br>
<br>
I'm giving a talk next week on SSL. It will include "trust models"<br>
and will lead to PGP and SSH and stuff like that.<br>
<br>
One of the points will be "water cooler leaks", ie: that the biggest<br>
security holes are human.<br>
<br>
This story is just too juicy to pass up!<br>
<br>
-- Rick; <><<br>
<div class="HOEnZb"><div class="h5"><br>
<br>
On Fri, Jun 22, 2012 at 3:55 PM, <<a href="mailto:jep200404@columbus.rr.com">jep200404@columbus.rr.com</a>> wrote:<br>
> I got an "interesting" phone this afternoon from someone who<br>
> claimed that my Microsoft Windows computer was sending them<br>
> messages with passwords and other nifty secrets, and that they<br>
> were calling to help me remove the bad software that sending<br>
> the secrets. He asked if I was in front my computer. I asked<br>
> if the problem was due specifically to MS Windows, and he<br>
> confirmed yes. When I said that I did not have a Windows<br>
> computer, he said he must have the wrong number and hung up.<br>
> He had a south asian accent.<br>
><br>
> When he asked if I was in front of my computer, I think he was<br>
> going to have me go to some web site that would take over<br>
> my computer under the guise of "helping me".<br>
><br>
> If I had been thinking quicker, I would have booted Knoppix on<br>
> a computer with no hard drive, then play along. With more<br>
> preparation, wireshark, honeypots, and friends would be fun.<br>
> A fun question _before_ visiting the sucker web site would<br>
> be to ask what my IP address is (since they are getting<br>
> messages from my computer) and how they got from my IP address<br>
> to my phone number.<br>
><br>
> _______________________________________________<br>
> colug-432 mailing list<br>
> <a href="mailto:colug-432@colug.net">colug-432@colug.net</a><br>
> <a href="http://lists.colug.net/mailman/listinfo/colug-432" target="_blank">http://lists.colug.net/mailman/listinfo/colug-432</a><br>
<br>
<br>
<br>
</div></div><span class="HOEnZb"><font color="#888888">--<br>
-- R; <><<br>
'::1, sweet ::1'<br>
</font></span><div class="HOEnZb"><div class="h5"><br>
_______________________________________________<br>
colug-432 mailing list<br>
<a href="mailto:colug-432@colug.net">colug-432@colug.net</a><br>
<a href="http://lists.colug.net/mailman/listinfo/colug-432" target="_blank">http://lists.colug.net/mailman/listinfo/colug-432</a><br>
</div></div></blockquote></div><br></div>