Tech Support Scam installs RAT (when asked for refund)

That Warowl intro really brings back the feels on that video

M O R T O N

Hi Leo, it seems more difficult to detect these connections because they use quick over UDP many sites are using quick to connect Wireshark doesn't pick up much of the information. Does process explorer pick up any type of connection? Are there any other tools that would help resolve any type of strange connections?

i heckin love warowl

How important a recovery phone number or email is??

Well let me tell you a short story , when I was a kid , I fell for a free in game reward and gave up my google account , when my device got logged out of account, I immediately looked up the reasons on google and just recovered my account and changed the password. Because I had my mom's phone number linked to it.

I can't wait to read a news report about one of these criminal scam centers being bombed. That'd be 'horrible' of course.

this is scary. why did safe browsing or windows defender not alarm when this file was downloaded? also why is the malicious application signed!!?

Is gaurdio a fake app?! 🤔 going through this now. It's on all of our wireless devices. Such a nightmare. Thanks for the info.

Thank you for spreading information

Bitdefender missed this

Refund scam

Funny, I know this software. We use it for IT support internally. Super easy to uninstall honestly, they have detailed instructions on how to uninstall the software. But yes I can confirm this software can pull any and ALL information from your computer. Not only that but it can run a Backdoor mode where the person on the other side can access a PowerShell and CMD console without the user knowing. This is not a Virus however in the slightest, it is just an abused tool by scammers.

I use ConnectWise Control in the IT dept I work at. When used legally, it is a really powerful remote session/access tool for IT support. It's unfortunate that scammers are using it this way...

i would love Microsoft to call me..... especially as they try their malware on my Linux Mint Debian Edition..... 'you have the windows 13 sir"

Lol Morton

I am a network admin / support agent for about 30 users and I get at least one email a week forwarded to me that's a fake invoice for a few hundred dollars with a number to call for a refund

Leo, by default in Windows firewall there is a rule active that allows programs to connect to you for remote help. Is it enough to disable this rule for your network domain profile. Ive tried to change the scope of permitted ip's to the 24 subnet but it asks for a parameter in the predefined rule.

Isn’t norton more dangerous then morton?

Yet again, Kaspersky reigns supreme with the detection here.

Good ol' Warowl

i did with my friend
and i regret it

You should contact Jim Browning & Trilogy Media for more information about scammers

Morton 😂

Nice 👍

👍

Test avira free on malware and ransomware.
Last test on your channel for this product was about 2.5 years ago. Let us see what has changed siince that.

How to catch telegram scam group sir ?

So many scammers group in telegram . They will assure high return in our investment ..I was also one the victim ..plis help me sir

Happy independence day scammers

You should also review devices from Hak5 like Wi-Fi coconut and what can be obtained threw Wi-Fi hacking find out if it’s at all possible to create a defense software with a cellular and Wi-Fi dongle that can be used with lab tops or desktop to combat or acknowledge something is using a sniff device for data transmission.
That and a way to stop handshake stealing to other wifi networks wifi security needs more analysis to aid in this battle

@The PC Security Channel Hello! could you make a new video about the best free Antiviruses?

My facebook and instagram got hacked, they also posted some scammy sites in insta photos, how did this happened without downloading anything and not loggin in any sketchy sites?

Hi leo. just wanted to make you aware that the windows C band updates for theend of August are supposed to ad a feature that is supposed to enhance windwos defenders ability to detect, intercept, and prevent ransomware and other advanced attacks. so may want to do another test of it after installing those an see how much difference it does or doesn't make!

Bravo!! to you and that jazz track at the end, You sir are really a beast!!!!!

Gotta love the Morton. Everyone should make their old timer family members aware of these things and keep them in the loop.

Just wanted to say a big thank you for pointing out Rat programs, Back in 2019 I came across my first one. Usually they just used things like AnyDesk or the others. And I do appreciate all the scam baiters out there, but especially this one. Did not know that the RAT programs were still being used.

Wow. Super shady.

do a yubikey review please

Great work! Thank you

One of these D bags called me thinking he could fool me. Long story short he named off all kind of bogus numbers and said there was a warrant for my arrest that would go through if I didn’t pay the money. (You guess it, IRS scam). Coincidence that shortly after I hung up I got the browser hijack saying a virus was detected on my computer and to call a number and speak with a rep. Had an easy fix for that one. Dig up the ip address and put it in my firewall block list. Found out it was coming from India. So I blocked the who range. And blocked the number that called me too. Funny part is I have friends that work security for the government. And they were so happy to get these details. Hahahaha. They picked the wrong guy to mess with. Bunch of D bags.

I happened to be in front of a computer that my mother had bought from a local support group for the elderly, when Microsoft Tech Support called.
Guy was telling me how there's unusual activity going out via the internet.
I said to him "wow you people are fking fantastic at your job. Thanks. My mother only just got it yesterday and hasn't even got the internet connected".
Guy was to dumb to recognise my sarcasm and still tried pulling the same, till I got loud and started yelling at him, then told him to fk off.

i think my mom actually got scammed by some losers that were using connectwise years ago on her old computer

They need to catch these guys and force them to run a gauntlet of elderly people armed with their walking canes.

A scammer almost fooled my uncle. But before he gave out any information, he gave me a call, and I talked with a woman who claimed he was infected with a virus because of a long string after running assoc in the terminal. I have the same string as his PC and I know I'm not infected! The voice changed from a woman's to a man's and they said "fu*k off!!"

Why would anyone feel reassured by a NORTON or MCAFEE-looking website? Even the REAL ones. Bloatware!! RUN!!

Indian Accent = Go away (Turn your Phone OFF) Should tell Grandmothers and Granpas to not believe on Funny Accents

Well done, I learned a lot!

Thank you very much you are very Education very Good keep it UPP

A tech support scammer tried to get my elderly father yesterday. He had the same accent as the guy in the video, and he also called himself "Sylvester." Gee, what a coincidence. However, this guy said he was from GeekSquad.