Honeypots...
Tim Tisdall
tisdall-DXT9u3ndKiSh7up9GtFB90EOCMrvLtNR at public.gmane.org
Wed Apr 17 13:12:36 UTC 2013
I can't offer any specific advice beyond what you've already suggested, but
I just wanted to say that this is a great idea! I think it'd be great to
document exactly what they're doing and then upload the video to Youtube
for everyone to be educated about it.
It's a little crazy that they keep calling you, though... Don't they keep
track of who they already called? Or has this expanded into many
organizations trying this same scam?
On Tue, Apr 16, 2013 at 5:38 PM, Colin McGregor <colin.mc151-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org>wrote:
> I got another one of those "Windows Technical Support" calls today
> (seems to happen about once every fortnight), telling me that my
> Windows PC had been sending them errors. I played along for as long as
> I had the stomach for it, wasting their time before telling the man at
> the other end that I was running Linux...
>
> At some point I would like to go the all the way with these @#$%. Any
> thoughts on setting up a virtual Windows PC honeypot under Linux in
> such a way that I can:
>
> - Easily track and capture exactly what these people are doing
> (ideally in real time). I want both screen video and the files they
> are manipulating.
> - Record the phone conversation in sync with what is happening on
> screen (I have an old device that will let me record phone calls on an
> analog tape recorder but I want the recording to be in sync with the
> screen video).
>
> I've used Oracle's Virtual Box in the past and that would be my first
> pick for virtualization software, but is there a better pick for a
> project like this?
>
> Further I have my OLD original copy of Windows 98, question is would
> this be adequate, or is there another versions of Windows that I
> should be after when dealing with these @#$%?
>
> In case anyone is wondering why I am considering this effort, well
> there are multiple reasons. I have an intellectual curiosity as to
> EXACTLY what these people are up to. If these people are trying to
> scam me they can't be scamming the stupid (thus in turn hurting their
> profits, and if they start loosing money they will stop :-) ).
>
> Thanks.
>
>
>
> Colin
> --
> The Toronto Linux Users Group. Meetings: http://gtalug.org/
> TLUG requests: Linux topics, No HTML, wrap text below 80 columns
> How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://gtalug.org/pipermail/legacy/attachments/20130417/b765160c/attachment.html>
More information about the Legacy
mailing list