tag:blogger.com,1999:blog-917380976628946774.post8221242205386865979..comments2023-10-29T00:21:48.503-07:00Comments on IT Operations Trench: Scary security storyScore the cloudhttp://www.blogger.com/profile/08332167259267744791noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-917380976628946774.post-69871673660149076602012-08-18T08:11:27.122-07:002012-08-18T08:11:27.122-07:00Wow. I didn't realize that hackers were doing ...Wow. I didn't realize that hackers were doing that. I was shocked. I mean I get the idea of using sql injection to just dump a DB and grab a few hundred thousand cc numbers. But doing it one at a time doesn't seem that efficient. Though that said, I guess if you can scam 2 or 3k a day that's not bad money either, morality aside of course.<br /><br />Thanks for sharing and helping to warn others.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-917380976628946774.post-31158296266781158062012-08-17T13:15:13.925-07:002012-08-17T13:15:13.925-07:00My mother received one of these who claimed they w...My mother received one of these who claimed they were from Microsoft. She accepted it, because the day before her subscription ran out on her AV that comes with the computer so she thought they were going to update that. What they ended up wanting was her credit card info, which they bank automatically blocked when they tried to use. From all the scans and forensics I knew how to through at the machine, it didn't seem like they installed any malware they just wanted her cc info. They continued to try and call her several times a day several days after that.<br />After her card got blocked she was freaking out so she hung up on the guy and called me. I told her it was a scam and we have since got her ID protection because they were going through lots of her stuff.<br />Later that day I received a call from the same guy, who claimed he was from Microsoft in New York. The number he gave to call him back at in case it dropped was somewhere it Russia. When I asked him if he was actually with the Russian Mafia, the phone was immediately hung up and he never called back.<br />If I was smarter, I should have taken the opportunity to try social engineer him and try and get him to give me a bank account that I could route money to because I don't use credit cards. I am sure the FBI would have been interested in that. Unfortunately, I have never had the chance again.<br /><br />It was also reported in the ISC Storm Center Daily here - http://isc.sans.edu/diary.html?date=2012-07-11parkerbchttps://www.blogger.com/profile/03123590302433883605noreply@blogger.com