Helping people with computers... one answer at a time.
In a brazen scam attempt you may get a phone call from someone claiming to be your ISP to "help" you with your Windows problems. Don't fall for it.
Perhaps you might be interested in this little anecdote.
Yesterday about noon, the telephone rang.
It was an Indian woman - the conversation is as I recall it ...
What follows is one of the most brazen scam attempts I've seen in a while. Fortunately, the person reporting it had the right instincts and was able to avoid getting taken.
Let's look at the transcript provided, and I'll identify all of the warning signs with [notes] as we go.
The conversation (with names changed) went like this:
"Given the amount of information that's likely publicly available about each of us, it's not that hard to put together a convincing sounding story - but that story will have holes."
Caller: "Mr. Smith? We have your address as [correct address given], and we have your telephone number, otherwise we'd not be able to call you. For security purposes, would you give me your first name, please?"
Smith: "You should have that on your records" 
Caller: "Yes, but this is to check that you are Mr. Smith."
Smith: "I don't think that is necessary - I answered the telephone. What is this all about?"
Smith: "Yes, of course !"
Caller: "Well, when that happens, it sends a message to us , and we are getting a lot of these from you, and they are causing us some problems. Also, it is a sign that you may have serious problems with your computer very shortly. We want to help you to solve this problem, which will prevent you having your computer die on you - and it will solve the problems we are having with your messages. We have a team of Microsoft experts here to deal with it."
Smith: "Are you trying to sell me something ?"
Caller: "Oh, NO, Mr Smith! We just want to help you to sort out the problems; it's part of our service."
Caller: "Is your computer turned on?"
Caller: "Will you go to Start > Run, type in "Eventvwr" and press Enter."
Caller: "Click on "Application, and you will see lots of Events , either Information, Warning or Error. What is the total shown at the top?"
Smith: "over 1,700 since 6th Jan"
Caller: "Wow ! Roughly how many of these are Warnings?"
Smith: "I guess about a third?"
Caller: "O.K., now click on System, and tell me the total?"
Smith: "Over 2,800 - again, about a third are Warnings."
Caller: "You see Mr. Smith, how serious this is ?"
Smith: "Is it ?"
Caller: "Oh, YES, Mr Smith!  But we can do something about this ! I'll hand you over to a colleague who is an expert who can fix it for you."
Expert: "Hello, Mr Smith ! I'm going to help you fix the problems on your computer. I want you to go to Run > Start, type in www.logmein.com  and press Enter. Then tell me what you see."
Smith: "It's asking for a six-figure entry code." 
Expert: "Ah. Do you have that ?"
Expert: "Well, that's because your computer is over a year old. You get a year's free support, and this has now lapsed. You will need this 6-figure code before we can proceed. Renewal costs �50. May I have your Credit Card Number, please?" 
Smith: "Just a moment ! Your colleague told me at the start of this call that this was not a sales pitch. Do you want money off me ?"
Expert: "Oh, NO, Mr Smith ! We just want to sort out the problems on your computer ! But to do that you must have that 6-figure code....etc., etc., etc..."
Smith: "Just a minute ! I asked, do you want money from me, Yes or No?"
Expert: "It's not about money, Mr Smith, it's about fixing your computer !
Smith: "Is that a Yes or a No?"
Expert: "It's a Yes."
Smith: "Fine. Good day." CLICK 
The biggest take-away from this conversation may not be obvious, and that's this: always (and I do mean always) be extra cautious when they call you. Ultimately, you have no way to verify that they are who they say they are. You could be talking to a total stranger - or scam artist.
With that in mind, on to the specific notes:
 Exactly. Though they will often ask for something even more personal - like mother's maiden name or a part of your social security number - with all the obvious risks therein. Hence the warning I started with: recognize that they called you, and don't respond with this information. [back]
 Your ISP will never say "this is your ISP" - they'll identify themselves by name, both the name of the individual calling (which may be meaningless for security purposes) and the actual name of your ISP. Stating the correct information doesn't mean they're legit (it's not that difficult to find someone's ISP), but not telling you at all is a big red flag. [back]
 Really, now ... who hasn't? [back]
 No, it doesn't. If a message is sent at all, it's sent to Microsoft or to the vendor of the software that's having a problem. [back]
 Yes you will. In fact we all will. The event viewer is kind of a mess, and having lots of events is not an indication that things are about to go bad. [back]
 Oh, NO, Mr. Scammer! [back]
 Important: logmein.com is a legitimate company/site and they have nothing to do with this scam. They provide a "remote access" service - the ability to login to someone else's computer across the internet. I think you can see where this might be headed. [back]
 It's unclear, but this is one of two possible targets of the scam. It's possible that once the appropriate code is entered (provided by the scammer, of course) that they would then be able to access our victim's computer remotely. [back]
 Bingo. This is more likely the real target of the scam: to get you to divulge your credit card information. [back]
 Handled excellently. This is exactly the correct response. [back]
I think of it as phone phishing.
As you can see, there were many red flags in this conversation. Given the amount of information that's likely publicly available about each of us, it's not that hard to put together a convincing sounding story - but that story will have holes. You must watch for them.
Here are my important take-aways from this example:
Insist on full and correct identification of the company that they claim to represent.
Always be extra suspicious when they call you. One solution: ask for a number at which you can call them, and then either research that number (Google's been fairly useful for this), or call your ISP yourself using only phone numbers you find yourself in your ISP's provided information and ask if this number, person or scenario is something they actually know about.
Never, ever give your credit card or other personal information to someone who called you. At least not unless you're absolutely positively certain you know who they are. If needed, get a call back number - that way even if it still turns out to be a scam, you'll have that to give to the police.
Be particularly suspicious of instructions to visit web sites. They may be legitimate - if you call your ISP's tech support line, for example, they're likely to have you do things like that. However, until you're certain you know who you're talking to, don't.
If you get called, and you're the least bit uncertain the solution is simple: hang up, and call the company that they claimed to represent. If it's legitimate they'll understand (and perhaps even appreciate) your caution. If it's not, they'll definitely appreciate your caution, and you'll have just saved yourself a lot of grief.
Comments on this entry are closed.
If you have a question, start by using the search box up at the top of the page - there's a very good chance that your question has already been answered on Ask Leo!.
If you don't find your answer, head out to http://askleo.com/ask to ask your question.