Fraudulent Tech Support Call
-
@BRRABill said:
I have never had to do a full reinstall, but every case I have seen have just been searchbars or whatever gone crazy.
You mean just bloatware? That's not the same. You can argue, and I'll agree, that bloatware is kind of malicious in a very light way (like how you might maliciously step on someone's toe or bump into them or not let them onto the highway from the ramp - "little" malicious) but it's not malicious in an illegal way and relies on tricking the customer as to what they "want" not as to "what they think they are getting." It's a bit different. It's malicious like a salesman can be malicious - hurting you to the extent of honesty.
But with bloatware itself, you don't need to reinstall, just remove. Some malware hides as bloatware, but malware can hide as anything so that's not a good guideline.
-
@IRJ said:
Why? Do they offer to do free labor on your car when it needs maintenance?
People understand mechanics don't work for free, but for some reason they think IT people should
I have friends that are mechanics that work on my car for free. I give them free IT stuff.
I just know a lot of people who help each other out.
I'm a member of a "Pay It Forward" group, too.
-
@BRRABill said:
I am just saying I don't think that needs to be the case on every malware case.
So where do you draw the line? At which times that someone has almost certainly had their identity and access compromised do you recommend remaining at risk and not taking the most basic precautions? How do you know which times they were just stealing bandwidth and not stealing bank data?
-
@BRRABill said:
I have friends that are mechanics that work on my car for free. I give them free IT stuff.
That's not free at all, that's bartering.
-
@BRRABill said:
@IRJ said:
Why? Do they offer to do free labor on your car when it needs maintenance?
People understand mechanics don't work for free, but for some reason they think IT people should
I have friends that are mechanics that work on my car for free. I give them free IT stuff.
I just know a lot of people who help each other out.
I'm a member of a "Pay It Forward" group, too.
In my experience bartering is rarely fair in the long run. Especially when people think. Oh he is just sitting at a computer for an hour.
-
@scottalanmiller said:
So where do you draw the line? At which times that someone has almost certainly had their identity and access compromised do you recommend remaining at risk and not taking the most basic precautions? How do you know which times they were just stealing bandwidth and not stealing bank data?
I don't know. That is my question, I guess.
-
@scottalanmiller said:
That's not free at all, that's bartering.
Well to be fair, they started working on my car long before I started helping with their computer.
Maybe I'm just lucky to know helpful people.
-
@BRRABill said:
I don't know. That is my question, I guess.
But unless you have a really solid answer, when would you not reinstall?
I'd happy recommend not reinstalling when there is no risk. I just have no means of knowing when that is so will never make that recommendation.
-
@BRRABill said:
Has anyone had this actually happen to someone they knew?
yep this happened to a customer 2 weeks ago. I nuked that thing so fast!!
You can never trust that computer again! You KNOW that it was used/installed on by an untrusted actor. You can never know if you get a root kit out completely short of formatting it and starting over..
And sadly, even that isn't good enough.. as the NSA has software that can install itself into the firmware of some HDDs (and maybe SDDs).
-
@Dashrender said:
And sadly, even that isn't good enough.. as the NSA has software that can install itself into the firmware of some HDDs (and maybe SDDs).
And maybe BIOS.
-
@scottalanmiller said:
@BRRABill said:
I know we've discussed this before, but what are your feelings on reinstallation for malware/virus/etc infections?
My take on it is: reinstall, every time.
Let's say that again for good measure - Every Time.
-
I guess this also comes into play if you can easily do it.
If the infection doesn't seem all that severe and they are home users (without an image, backups, whatever) I typically use one of the sites that specialize in disinfecting these machines, and feel pretty confident.
I'm not saying there isn't a possibility of a problem.
-
@BRRABill said:
I guess this also comes into play if you can easily do it.
Well, I don't do it, that's part of it. I tell people that they should be prepared to reinstall always as part of being a computer owner. If they want to take the risk, it's their call. If they want to put in the effort, it is their call. If they want to be diligent and make this process easy, it's their call.
the problem with being the tech for them is that the things necessary to make this easy are up to them, but the person who pays the price is you. So if it isn't super easy, it's because they are taking advantage of you being free.
See the problem? That you even have this concern, to me, shows the problem with your free system. They don't respect you, if they did, you wouldn't have this problem.
People who take my advice from the beginning can reinstall easily and so they do. Ta da, fixed. of course, those people don't get infected often either.
-
-
Though I am certainly starting to consider the alternatives.
But how do you know the data you are backing up isn't infected?
-
@scottalanmiller said:
@BRRABill said:
I'm not saying there isn't a possible probability of a problem.
Fixed that for you.
Fixed yours. LOL.
-
@BRRABill said:
But how do you know the data you are backing up isn't infected?
You scan them with a healthy scanner from a clean install. The backups are of data, not binaries. You can't be 100% sure, but you can be reasonably sure. If you don't reinstall and scan the data, you can be quite sure that they are in danger.
-
@BRRABill said:
@scottalanmiller said:
@BRRABill said:
I'm not saying there isn't a possible probability of a problem.
Fixed that for you.
Fixed yours. LOL.
What's a possible probability? thats like being almost definitely certain. Either you are almost or definitely.
-
@BRRABill said:
If the infection doesn't seem all that severe and they are home users (without an image, backups, whatever)
This is where image backups are bad. You have to use them as file backups anyway, you should not restore from an image in a case like this. You want the healthy data, not the problematic system.
-
An article worth showing to friends before something bad happens...
http://www.smbitjournal.com/2011/04/why-it-pros-home-computers-are-different/