LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 08-25-2011, 03:41 PM   #1
jolin67j
LQ Newbie
 
Registered: Aug 2011
Posts: 3

Rep: Reputation: Disabled
Sticky Actual Linux threat via TeamViewer


Had one of those scam calls from india tonight Windows Help my computer is running slow they could fix it.I told him i had linux and he was unconcerned ,said enter url TeamViewer.com.I googled instead and found IT does work on Linux and is a very effective remote controler of my PC !!!
This should urgently go out to the Linux community WE ARE NOT SAFE.
More info TeamViewer can be downloaded for Linux as an executable file, no installation required

Read also other post on googling "teamviewer.com linux scam"

Re: Computer Support Scam
I use teamviewer .. free but powerful remote control I use for my home pc
peek at my cam, control downloads . Unlike Logmein, the more popular remote control software, teamviewer has less fuzz with security and client even works from my cheap zte SF android phone. Too bad its now used for scams. Thanks for the heads up, have to keep my security airtight now.

Last edited by jolin67j; 08-25-2011 at 06:15 PM. Reason: More relevant information and Tiding
 
Old 08-25-2011, 05:25 PM   #2
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,138

Rep: Reputation: 168Reputation: 168
You may be right, but your post reads more as an advertisement for the product. It doesn't really matter what these callers want you to install, the important thing is - don't install it.
 
Old 08-25-2011, 05:39 PM   #3
scottro11
Member
 
Registered: Jun 2009
Location: NYC
Posts: 262

Rep: Reputation: 59
If I remember correctly, teamviewer requires wine to be run. It also involves you allowing someone to control your machine. Haven't used it in months, don't remember the exact details.
 
Old 08-25-2011, 05:42 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594
Quote:
Originally Posted by gilead View Post
It doesn't really matter what these callers want you to install, the important thing is - don't install it.
Same goes for teamviewer: if you don't need it then don't install it. If you do install it then learn about security features. Most problems with VNC, Vino, teamviewer etc, etc stem from users just being lazy and not caring an ounce about security.
 
1 members found this post helpful.
Old 08-25-2011, 05:47 PM   #5
jolin67j
LQ Newbie
 
Registered: Aug 2011
Posts: 3

Original Poster
Rep: Reputation: Disabled
This is not mean't to be any advertisement

I have no intention to advertise the above but too warn Linux users we are not as safe as we think we
are though most Linux users are tech savvy,but i never try rpm etc but an executable like chrome or the above
opens the door to the same problems as Windoze.
Is discussing a threat now,better than waiting for a contagion to happen.
This scam is becoming more active only need to google the above to see many people have lost and are losing money.
 
Old 08-25-2011, 06:43 PM   #6
dugan
LQ Guru
 
Registered: Nov 2003
Location: Canada
Distribution: distro hopper
Posts: 9,835

Rep: Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424
Someone trying to social-engineer you into giving them remote access to your computer isn't exactly Linux-specific. No-one would have thought that Linux is immune to this either.

Last edited by dugan; 08-25-2011 at 06:57 PM.
 
1 members found this post helpful.
Old 08-26-2011, 11:55 AM   #7
unixfool
Member
 
Registered: May 2005
Location: Northern VA
Distribution: Slackware, Ubuntu, FreeBSD, OpenBSD, OS X
Posts: 782
Blog Entries: 8

Rep: Reputation: 158Reputation: 158
Quote:
Originally Posted by jolin67j View Post
I have no intention to advertise the above but too warn Linux users we are not as safe as we think we
are though most Linux users are tech savvy,but i never try rpm etc but an executable like chrome or the above
opens the door to the same problems as Windoze.
Is discussing a threat now,better than waiting for a contagion to happen.
This scam is becoming more active only need to google the above to see many people have lost and are losing money.
Don't believe everything you read on the interwebz. You don't have to be particularly tech savvy to use Linux, either. With any remote software, if you don't control who can access it, you're setting yourself up to fail. Almost every response to your post stated this...you should pay heed to the responses.

This is more PEBKAC than anything...
 
Old 08-26-2011, 04:19 PM   #8
jolin67j
LQ Newbie
 
Registered: Aug 2011
Posts: 3

Original Poster
Rep: Reputation: Disabled
Thank you for all the replies,i would apologise for some poor sentence construction and grammar.
Anyway doing more interwebbing (googling) there are Linux threats but most are foiled by the need for root
password and binary installations presumably rpm s etc that i don't understand as i only use the repository.
The untalked of is the availability of linux executables like TeamWViewer and the telephone scammers know it.
Anyway i have instaled Firestarter and ClamAv though i cannot find the latter in My Applications list
has malware blocked it ?? Am i infected.
 
Old 08-27-2011, 11:03 AM   #9
allend
LQ 5k Club
 
Registered: Oct 2003
Location: Melbourne
Distribution: Slackware-current
Posts: 5,462

Rep: Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062Reputation: 2062
From http://www.theage.com.au/money/plann...823-1j77i.html, a recent article I read that shows the sophistication of social engineering used by scammers.
Quote:
Scammers often pose as legitimate institutions, pretending to be from companies such as Microsoft or Sensis or government agencies including the Australian Tax Office, the Australian Treasury and even Consumer Affairs Victoria, says the Minister for Consumer Affairs in Victoria, Michael O'Brien.

One of the most common scams reported to CAV in the past year was the ''computer repair'' or Microsoft ruse, which generated more than 1300 complaints, or about one in five of all the scam reports, in that state, O'Brien says.

The same deception is responsible for about 15 per cent of scam reports in NSW. In this scam, the victims are contacted out of the blue over the phone and told their computer is infected with a virus. The scammers tell the victims they need remote access to their computer to fix the virus and then use remote access to steal banking or other personal details.

In some cases, they may tell the victims they have ''fixed'' their computer and charge them a fee for the service.
My spouse took a number of calls from these scammers before I finally was at home to take the call. I made it apparent that I was highly sceptical, but the caller was persistent in the request to turn on my computer so I decided to play along. I turned on the computer and turned off the modem. The caller immediately hung up. I never even got the chance to test my Linux defences! Oh, and they have not been back.

Last edited by allend; 08-28-2011 at 06:47 AM.
 
Old 10-05-2012, 02:24 PM   #10
dugan
LQ Guru
 
Registered: Nov 2003
Location: Canada
Distribution: distro hopper
Posts: 9,835

Rep: Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424Reputation: 4424
The scammers tried to scam Arstechnica.

Last edited by dugan; 10-05-2012 at 02:42 PM.
 
Old 10-05-2012, 03:41 PM   #11
OlRoy
Member
 
Registered: Dec 2002
Posts: 304

Rep: Reputation: 86
These fake tech support calls have been going on a while now, and the FTC has just started cracking down on them. Link. I'm not convinced they were going to install Linux malware and such, because I would think I would have heard of it.

It's possible, but it's also likely that they were connecting to your computer, going to say they found malware, and then going to request your credit card number. They also seem to try to diffuse the situation and end the call without the user being suspicious, so I'm not surprised they wouldn't show concern when they find out you're using Linux. In fact, I've even heard of one of them connecting to either a Mac or Linux box and trying to install Windows software. I also saw a youtube video a while ago where a woman said she knew it was a scam because she was running a Mac, and the scammer insisted she was running Windows 95!

Last edited by OlRoy; 10-05-2012 at 03:54 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Teamviewer in Linux - Please Check Your Connection tazzin Linux - Networking 2 08-16-2011 07:40 PM
Sticky situation bcos of sticky bit Voyager7 Linux - Newbie 4 02-28-2011 11:29 PM
[SOLVED] Running TeamViewer 5/6 as a root in Linux networking.dept Fedora 4 01-03-2011 11:37 PM
not functioning teamviewer on linux svnkoyipra Linux - Newbie 1 06-10-2010 01:22 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:12 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration