Dave Schwartz
01-25-2013, 12:56 PM
Last night I got a telephone call from a Chinese-sounding voice telling me my machine was compromised. What got my attention was that he had the MAC address of my primary machine.
When he asked me to install TeamViewer I laughed and hung up.
But then I thought, "How did he get it?"
So, I proceeded to search on Google. "How did someone get my MAC address?"
Every article I read said that they only way to get it was from within your network. Well, that set me off.
I literally read 10 pages deep on Google (every article), before I found something that said that IPv6 sends the MAC address with every packet; anybody who wants it can harvest it from just about any web site you visit.
At that point I realized that anybody who had to get into my network to get the MAC address certainly wouldn't need me to run TeamViewer to get access because they would already have it. Duh...
Still, I was up until 2am running virus scan and 2 Malware scans.
Below is a link to the explanation of the scam if you are interested. Very creative. BTW, for the record, I KNEW it was a scam immediately. Nobody CALLS! EVER! But that "How did he get it?" thing kept me going.
http://blog.eset.com/2011/07/19/support-desk-scams-clsid-not-unique
When he asked me to install TeamViewer I laughed and hung up.
But then I thought, "How did he get it?"
So, I proceeded to search on Google. "How did someone get my MAC address?"
Every article I read said that they only way to get it was from within your network. Well, that set me off.
I literally read 10 pages deep on Google (every article), before I found something that said that IPv6 sends the MAC address with every packet; anybody who wants it can harvest it from just about any web site you visit.
At that point I realized that anybody who had to get into my network to get the MAC address certainly wouldn't need me to run TeamViewer to get access because they would already have it. Duh...
Still, I was up until 2am running virus scan and 2 Malware scans.
Below is a link to the explanation of the scam if you are interested. Very creative. BTW, for the record, I KNEW it was a scam immediately. Nobody CALLS! EVER! But that "How did he get it?" thing kept me going.
http://blog.eset.com/2011/07/19/support-desk-scams-clsid-not-unique