The Scam of A-Tech Network

By -
Stuart Ashenbrenner
Apple Security Researcher
April 12, 2017

There are so many different scams out there today. We hear about it every day. It’s been spoken about in lengths on CNN, NBC, FOX, radio, magazines, blogs, and the list goes on and on. Being in the tech community, I’ve gotten to see a very interesting side to the world of scam artists, in an over-the-web forum. There is one in particular that has been wreaking havoc for computer users, but let’s face it, if you aren’t using a computer yet, then you won’t be reading this. No harm, no foul.

The scam I have seen in the largest volume in recent years, hands down, has to be A-Tech Network Solutions, or as their company is named, A-Tech Network LLC. They claim to sell you anti-virus protection, and they “want to keep you from getting any other viruses.”

This issue was first brought to me when I was still working as a computer technician. The customer provided a trove of information. When I receive information, especially if it includes a company name and phone number, I think it is my responsibility to give them a call, let them remotely access my computer (like they do with all customers), and let them see “how many viruses I have on my computer.”
One thing I have to mention, when I called this company, I had just completely erased my computer’s hard drive and installed a completely new operating system. I didn’t download one, single program or even opened up the internet browser (Safari).

   Let’s begin with the information the customer provided me:

Company Name: A-Tech Network LLC
Toll Free Number: 1-800-565-2495
Email: billing@atechnetwork.com
Address: 182-08 91st. Ave, 2nd Floor
Hollis, NY 11423
Name Given: David Hudson
Virus Protection Plans: 1 year Warranty (Security + Network Security + Technical Assistance (Toll Free) + Antivirus)
Cost: $999.99

With this information, I was able to easily contact this company, and with the slew of information provided, I had no doubts that they were going to try to sell me some type of virus protection.

I contacted the company with the number provided above and blocked my number in the process. Immediately after the person on the other end answered, in a heavy Indian accent, they told me that I needed to call back in ten minutes and to NOT turn off my machine because “the virus can spread without (your) permission.” For starters, stellar customer service, liars.

I waited six minutes and called back - now they could help me. REMEMBER, I have no information on my computer whatsoever.

The person on the other end of the line had my open my web browser (I chose Safari) and had me navigate to a website: FastSupport.com. It sounds legitimate to the layman, which is why this is so popular, but immediately I knew this was a trap. Once at that site, I was asked over the phone to download the program on said site, which was a Citrix Online Launcher (this initiates screen sharing…uh oh). They had my use “Remote Code: 494-594-332,” which opened a program called GoToAssistCustomer (a known bad program).
Once screen sharing, the gentlemen with the heavy accent introduced himself as Steve Jones, and that he and his coworker Paul would be assisting me. He opened the program TextEdit, which is the most basic word processing program on a Mac. He was a horrific typer. He asked if I had a “desk” or a “lap” machine - not desktop or laptop. Made me chuckle.

The first thing that they told me was wrong with my computer was that I didn’t have a firewall (I did, and I had it enabled). They wanted to help me “build my firewall.” A firewall is basically a built in network monitor that blocks incoming connections. Mr. Steve Jones made it sound like he was going to come to my house with some bricks to help me build this firewall.

The program or file he searched for on my machine was MacKeeper. He said “it is known to have a bug and (he) wanted to fix it.”  I told him I didn't have it, to which he seemed quite surprised, and told me I must have clicked on something wrong. My guess? Because of the atrocity that is MacKeeper, I think that MacKeeper sends you a pop up to call this company, because MacKeeper is a meaningless scam of a company. If you need more information on MacKeeper, feel free to read my last post, MacKeeper and the King of Thieves.

This imposter on the phone popped open the Terminal program (see left) to see where the “attack” was coming from. He typed in the word “netstat,” hit enter, then typed the same word again, hit enter, and did this two more times. He was basically just trying to make it seem like he was doing a lot of work. 
    Finally, he found a virus on my machine called, Zeus. He even searched it on Wikipedia for me. This virus is ancient, and it hasn’t ben relevant in years. Again, all lies.

Now that he found the virus, it was time to make me pay. He told me that this would cost me $999. I asked it he had a website with pricing options. He had me go to sslshopper.com, whatever that is. Turns out, it was $999 in Australian dollars, which is only about $750 American dollars. I told him I was all-in!

I also asked if they provide in-home assistance. He said “yes” to my surprise. I then followed that up with asking if they were a local company. He said they were in New York, but they “outsource house visits.”

He asked if I could transfer them the money directly from my bank account. They didn't want to use credit or debit cards because “they’re anti-hackers and they don't want to see my information.” Funny how they wanted to remote into my computer and potentially see all of my personal information though. He told me that he would quit the screen sharing while I logged into my bank account. Instead of believing him, I just completely quit out of GoToAssistCustomer. I heard him stutter the SECOND I quit it, but he didn’t mention a word about it.

I told him I had logged in (I hadn’t), and he then asked to re-share the screen. I told him I didn't want him seeing my bank information, besides, didn't he say they didn't want to see any personal information?

He told me I needed to write an online check to him. I told him I didn’t see that option anywhere, but I did see a Wire Transfer tab. He thought about it, then he agreed. I told him what information I needed, and he gave it all to me.

Company: A-Tech Network LLC
Routing Number: 021000089
Account Number: 4998109779

After some quick research, I found the routing number above belongs to Citibank, whose address is:
Citibank
1 Penns Way
New Castle, DE 19720

I told him I transferred it, and that I would send him a screenshot of the payment screen. I then found a way to get off of the phone. I had all of the information I really wanted.

    In the end, after evaluating the customers machine, the number the customer called was found while the customer was searching for a Google Support number on a basic web search. I believe the number was 1-855-888-0376

If ever you feel like you are getting scammed, please email the CVO Macologists immediately, and we can come and check out your machine. Also, please always file a complaint to the Federal Trade Commission.



Questions or comments:

Twitter: @cvomacologists


Comments

Post a Comment

Popular posts from this blog

MacKeeper and the King of Thieves

By -
Image
Stuart Ashenbrenner Apple Technician/Security Researcher January 4, 2017 MacKeeper and the King of Thieves Rub the magic lamp and a Genieo pops out Leonardo DiCaprio was incredible in the blockbuster hit Inception , but if he starred in a movie about MacKeeper, it would be called, “Deception,” and the late, great Robin Williams would voice the Genie…o. Don't worry, I'll explain that bad joke later. Before we dive knuckles deep into a pile of MacKeeper, we should first give some background on the product. MacKeeper, formally owned by ZeoBIT and currently owned by Kromtech Alliance, according to their website, mackeeper.com, MacKeeper is “a choice of millions and the best application for cleaning, security and performance optimization for Mac OS X.”  The company initially released in May of 2010, and they are amazing... at marketing. They sell themselves as a security company and/or application, but after hours and hours of testing MacKeeper, we have found
Read more

Ransomware Made Easy

By -
Stuart Ashenbrenner Apple Technician/Security Researcher November 27, 2016 Ransomware Made Easy Stealing for the social engineer Mac’s get viruses. There, I said it. It’s true. Malware, adware, viruses, ransomware, the whole kitchen sink is available to Apple devices. I see it all day, every day. There is your first debunked myth. Recently, I saw a case of what I believe to be the easiest, most simplistic form of ransomware possible, but before we jump into ransomware, I’ll quickly breakdown what ransomware is. Ransomware, which similarly to most security issues is most common on PCs, but is 100% possible on an Apple machine. Ransomware, at its core, is hijacking a person’s computer, encrypting the data, then requiring that person to pay the hacker a specified amount of money to get the encryption key (a code or password) to decrypt the data. This seems like a difficult task from a hacker’s perspective, to hack into someone else’s computer, encrypt all of their d
Read more

Back Dat(A) Up

By -
Image
Stuart Ashenbrenner Apple Technician/Security Researcher December 20, 2016 Back Dat(A) Up Why backing it up ain’t just fo’ da club: how to back data up like a baller If your computer crashed today, or if all of your information got erased now, how upset would you be? That means pictures, documents, videos, music, etc, etc.  If you answered “meh” to the above question, or anything other than “I wouldn’t be,” then it is time to look into getting a backup drive for your information. With how simple Apple makes backing up your information, it will be some of the best money you’ve ever spent since you purchased that Christmas sweater for your dog. There are many different reasons to backup your information, but we’ll touch on three primary reasons. Let’s take a step back - why would you need a copy/backup of your information? Human nature is great start to why we need a backup. We have all spilled drinks, dropped things inadvertently, accidentally deleted something.
Read more