- Jul 26, 2018
- 2
- 0
- 10
Hi Guys,
Yesterday my mum called me with the word's "I <mod edit> up, please help me".
She explained the situation to me then:
Apparently she had gotten a pop-up in chrome, that locked her on that page stating "Your windows has been locked". In the pressure and adrenaline they put her under, she followed all of their instructions.
In short: she fell for a Phishing attack (she feels super embarrassed about it and can't sleep calmly anymore..)
Now to what the phisher did:
First she gave them her entire personal Data (Name, Adress, etc).
She called them and they made her install a remote access program and gained access to her computer. (GoToAccess)
They opened random console commands, folders and system monitoring tools. (Probably to convince her that they were actually doing something)
Then they made her enter her credit card info into a txt file.
They also made her hold her ID card into the laptops camera.
Only after that she felt something was fishy, unplugged all network connections and called me.
I immediately told her to block her credit card, which she did and luckily no transactions had been made yet.
I went over to her place afterwards and ran avast scan and malwarebytes scan, both not finding anything. Meanwhile we changed all her passwords.
I looked for suspicious processes or programs in startup but didn't find any either. And of course I removed the remote access program.
Now my question is, is there anything else I should do?
I've thought about maybe doing a clean install of windows, using the windows 10 built in reinstall or running a boot able malware scan. Any recommendations?
About the identity theft, we will probably go to the police and report the identity theft, but as far as I could find, there is not much more that one can do..
Sorry for the wall of text. And thank you for your time reading this!
Yesterday my mum called me with the word's "I <mod edit> up, please help me".
She explained the situation to me then:
Apparently she had gotten a pop-up in chrome, that locked her on that page stating "Your windows has been locked". In the pressure and adrenaline they put her under, she followed all of their instructions.
In short: she fell for a Phishing attack (she feels super embarrassed about it and can't sleep calmly anymore..)
Now to what the phisher did:
First she gave them her entire personal Data (Name, Adress, etc).
She called them and they made her install a remote access program and gained access to her computer. (GoToAccess)
They opened random console commands, folders and system monitoring tools. (Probably to convince her that they were actually doing something)
Then they made her enter her credit card info into a txt file.
They also made her hold her ID card into the laptops camera.
Only after that she felt something was fishy, unplugged all network connections and called me.
I immediately told her to block her credit card, which she did and luckily no transactions had been made yet.
I went over to her place afterwards and ran avast scan and malwarebytes scan, both not finding anything. Meanwhile we changed all her passwords.
I looked for suspicious processes or programs in startup but didn't find any either. And of course I removed the remote access program.
Now my question is, is there anything else I should do?
I've thought about maybe doing a clean install of windows, using the windows 10 built in reinstall or running a boot able malware scan. Any recommendations?
About the identity theft, we will probably go to the police and report the identity theft, but as far as I could find, there is not much more that one can do..
Sorry for the wall of text. And thank you for your time reading this!
Facebook
Twitter