|
Posted by spviking on August 30, 2006, 10:24 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Time Warner's Road Runner here in New York and he got his recent
Verizon phone bill and found 600 dollars worth of calls to Cameroon,
Austria and Madagascar. The phone company told him it was likely modem
hijacking (what Moe Trin described). My cousin does not have his phone
line plugged into his computer at all and we cant figure out how this
malware could have effectively charged his phone bill. Sorry I was so
vague initially.
Thanks again!
David H. Lipman wrote:
>
> | On Tue, 29 Aug 2006, in the Usenet newsgroup alt.computer.security, in
article
> |
> >> David H. Lipman wrote:
> >>
> >>>
> >>|> Hi, Can modem hijacking happen to someone who uses broadband (not dsl)
> >>|> and doesnt have a phone line hooked up to their computer? I am a little
> >>|> new to the topic, any help would be appreciated.
> >>>
> >>> Plaese elaboarte on what what you are trying to ask.
> >>
> >> I thought the OP was talking about downloading programs that then try to
> >> place calls via your phone, i.e. highjacking the modem.
> |
> | My interpretation was that the O/P was concerned about those wonky add-on
> | "tools" needed to connect to some web sites - that turn out to be mal-ware
> | that reconfigures the windoze Dial Up Networking setup to replace the
> | existing (presumably "local") phone number with one in Central Africa (or
> | some other "friendly" region) and suddenly the dial in to the ISP isn't
> | a local call any more, and the telephone bill is running $LARGE_NUMBER
> | of $CURRENCY_UNITS per second.
> |
> | Where this _MIGHT_ impact a broadband user without a telephone line and
> | appropriate modem is if the "tool" reconfigures the networking setup,
> | trying to disable the broadband connection so that the system _has_ to
> | use the dialin to the foreign country. Not very likely, but possible.
> | The mal-ware actually should trivially detect that this is a broadband
> | connection (rather than dialin), and there are much better things it can
> | be subverted for.
> |
> | What would be FAR more likely is the installed mal-ware converts this
> | broadband connected system into a support zombie - serving pr0n or SPAM
> | to the world at no cost or risk to the bad-guy. If something goes wrong,
> | the O/P takes the heat, and the bad-guy can't be found. What's new?
> |
> | To the O/P: The mal-ware is going to go for the broadband connection (DSL
> | or Cable - doesn't matter) for the same reason you converted to broadband.
> | Bandwidth. Do you remember how long it took to bring up a single full
> | screen image from someplace on the net over a telephone line? With cable,
> | it comes up just like that! Now, think of the poor spammer trying to
> | deliver that marvelous offer of p*n*s ex**nder pills to every household in
> | Ohio using that same dialin line. Don't you think the spammer would rather
> | use your high speed connection to do the same task, especially when there
> | is no cost to the spammer, and you're the one people want to lynch?
> |
> | Old guy
>
> Malware doesn't care what Internet connectivity you have. It just want's to
launch its
> payload which is often Internet related.
>
> It is just that connection to Broadband increases the cahnce of being infected.
>
> Malware will happily infect a DUN connected PC.
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> http://www.ik-cs.com/got-a-virus.htm
| 
XML site map