Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Youtube

YouTube Channel 'Tech Support Scams' Taken Offline By Tech Support Scam (theregister.com) 55

The Tech Support Scams YouTube channel, operated by host and creator Jim Browning, was deleted after a tech support scam convinced Browning that the only way to secure his account was to delete it. The Register reports: "So to prove that anyone can be scammed," Browning announced via Twitter following the attack, "I was convinced to delete my YouTube channel because I was convinced I was talking [to YouTube] support. I never lost control of the channel, but the sneaky s**t managed to get me to delete the channel. Hope to recover soon." To fool Browning, the ruse must have been convincing: "I track down the people who scam others on the Internet," he writes on his Patreon page. "This is usually those 'tech support' call frauds using phone calls or pop-ups. I explain what I do by guiding others in how to recognize a scam and, more importantly, how to turn the tables on scammers by tracking them down."

Browning has made a name for himself with self-described "scam baiting" videos, in which he sets up honeypot systems and pretends to fall for scams in which supposed support staffers need remote access to fix a problem or remove a virus -- in reality scouring the hard drive for sensitive files or planting malware of their own. "I am hoping that YouTube Support can recover the situation by 29th July," Browning wrote in a Patreon update, "and I can get the channel back, but they've not promised anything as yet. I just hope it is recoverable."

Whether Browning is able to recover the account, and the 3.28 million subscribers he had gathered over his career as a scam-baiter, he's hoping to turn his misfortune into another lesson. "I will make a video on how all of this went down," he pledged, "but suffice to say, it was pretty convincing until the very end."

This discussion has been archived. No new comments can be posted.

YouTube Channel 'Tech Support Scams' Taken Offline By Tech Support Scam

Comments Filter:
  • Well, that's a bummer. I hope he can completely dox whoever scammed him, very publicly.

  • Playing the odds. (Score:5, Insightful)

    by Ostracus ( 1354233 ) on Wednesday July 28, 2021 @05:46PM (#61631973) Journal

    Whether Browning is able to recover the account, and the 3.28 million subscribers he had gathered over his career as a scam-baiter, he's hoping to turn his misfortune into another lesson. "I will make a video on how all of this went down," he pledged, "but suffice to say, it was pretty convincing until the very end."

    If it can happen to him it can happen to anyone.

    • Yup I almost fell for a email scammer who claimed to be our managing partner and need something right now. Fortunately I saw the email was from gmail and called the partner to ask if it was him and warn him of the scam. Scammers even tried to call me via what’s app.
      • I've seen some pretty subtle/clever ones, but only one that comes to mind that actually had grammar that was refined enough to be passable, and long enough to somewhat reliably expose common flaws.

        I also learned from those long-gone, but somehow still present, days of unrestricted SMTP warfare, (and sending a number of 'support@microsoft.com' prank messages to family and friends) to check both the 'from' and 'reply-to' fields, and go far, far out of my way to avoid mail clients that won't serve up full hea
        • Also helps that I'm in a position (structurally, functionally, and physically) where, while I should, I don't strictly need to check my e-mail frequently (or otherwise interact with third parties), and coworkers/management readily came to accept that characteristic.

          This, combined with awareness of how communication takes place between people I work with, usually makes these fairly transparent. It is definitely much easier, of course, when the entire company lives within a 50 mile radius, and multiple nigh
          • * 'structurally' would probably read better as 'organizationally'
          • by thereddaikon ( 5795246 ) on Thursday July 29, 2021 @08:34AM (#61633775)

            I suppose the takeaway (laden with opinion, naturally) is that e-mail, in its present state, is not particularly good for real-time communication, and this should be fairly obvious to anyone who has used it. As a result, when an attempt is made to use it as such (the "act now or (i) die but keep it hush hush" type crap mentioned by the parent post), it should be viewed as inherently suspicious, and warranting additional scrutiny; finally, i'm of the opinion that sudden, unexplained, and uncharacteristic requests for silence on a further unexplained matter should be brought to the attention of higher-ups.

            I work in infosec and part of my duties involve training our users on security practices. This is actually one of the lessons I teach. Email is an inherently slow form of communication so any email that wants you to act with urgency or else should be considered suspicious until proven innocent. We provide our staff with multiple forms of communication and if something is truly urgent then a phone call, IM or meeting in person is preferred. That obviously doesn't help with scams over the phone or through IM but email is still by far the most common vector and I reckon it will remain to be.

            • I work in infosec and part of my duties involve training our users on security practices. This is actually one of the lessons I teach. Email is an inherently slow form of communication so any email that wants you to act with urgency or else should be considered suspicious until proven innocent. We provide our staff with multiple forms of communication and if something is truly urgent then a phone call, IM or meeting in person is preferred. That obviously doesn't help with scams over the phone or through IM but email is still by far the most common vector and I reckon it will remain to be.

              From a scammer's standpoint email is good because you can hit multiple targets and only need one nibble to try to hook someone.

              • I've had to deal with the fallout of people falling for some really low effort attempts before. Something to the effect of:

                From: randomfakeaccount@gmail.com

                Hey, company VP here, can you update my direct deposit to this bank account number and confirm it will take effect next paycheck?

                Thanks,

                totally company VP and not a scam.

                One would think that such a lazy con would fail but some people are just not self aware enough to register it. The shotgun approach to phishing is definitely valid and effective.

      • by tlhIngan ( 30335 )

        Yup I almost fell for a email scammer who claimed to be our managing partner and need something right now. Fortunately I saw the email was from gmail and called the partner to ask if it was him and warn him of the scam. Scammers even tried to call me via whatâ(TM)s app.

        Not surprised. Spear phishing is actually a very effective tactic, and it's likely what Jim Browning got.

        Basically, instead of a phishing attack which tries to sucker in a few people through sheer numbers (send out a billion emails, mayb

    • by paiute ( 550198 ) on Wednesday July 28, 2021 @07:07PM (#61632255)

      If it can happen to him it can happen to anyone.

      If Jesus himself appeared with a halo and told me to delete files, I would ask for two factor authentication.

  • I've had similar experiences with spammers, the more you get them shut down the more they show up.

    • by Tablizer ( 95088 ) on Wednesday July 28, 2021 @06:28PM (#61632083) Journal

      I like it when people play mind games with scammer/spammers. The best is when it seems like you are very close to saying "yes", then delay based on some silly concern. Gives them a taste of their own medicine.

      You: "Oh wait, before I submit payment info, I have one last question. Are you JSTR certified?"

      Scammer: "Uh, ...yes, we are certified. You have my word!"

      (You hear typing in the background because scammer is googling it.)

      You: "Great, can you give me your certification number? All members have a cert number."

      Scmr: "Uh, 738923."

      You: "That's funny, it says 'invalid number' when I check on their website."

      Scmr: "Maybe it's the wrong site, can you give the URL you are using?"

      You: "JSTR.org"

      Scmr: "I'm getting a site not found error, are you sure it's right?"

      You: "Oh wait, it's JSTR!.org, with an exclamation mark. Sorry about that."

      Scmr: "Hmm, my browser doesn't like exclamation marks."

      You: "It works in Firefox, do you have Firefox?"

      Scmr: "No, I just have Chrome."

      You: "I'll wait while you install Firefox. I have to take a shit anyhow..."

      • by AmiMoJo ( 196126 )

        This guy was up to some next level stuff. He managed to trick the scammers into installing malware on their machines, giving him access to their PCs, sending him free stuff... He also liked to do a prank where he would open a browser window to an article about tech support scams with a photo of the office where the guy worked, complete with him and his colleagues waving to the camera.

      • +10 ROTFLMAO

    • by ArchieBunker ( 132337 ) on Wednesday July 28, 2021 @07:09PM (#61632261)

      If they're Indian just ask if their mother knows that they steal for a living. That really sets them off.

      • by shess ( 31691 )

        If they're Indian just ask if their mother knows that they steal for a living. That really sets them off.

        So true! That kind of question is sure to generate some swearing!

        I've decided, though, that it might be more productive to ask questions like "Why don't you try a line of work which doesn't involve ripping people off?" I'm not saying that a lighted question will surely generate self-reflection, but it seems more likely than a question which immediately enrages them.

  • to help you for free."

    Anyone who is familiar with Microsoft will instantly recognize this as a scam. You are more likely to get a same-day appointment at the DMV than get ahold of Microsoft support.

    • Actually, you CAN get calls from Microsoft. You just have to be paying those crazy astronomical rates for Visual Studio subscriptions (formerly MSDN subscriptions where they shipped out DVDs every month). They'll call you around the time your subscription is about to expire because they want that sweet, sweet $$$$ to keep flowing (apparently now just $1,200 to $6,000 for the first year...per user).

  • Comment removed (Score:5, Interesting)

    by account_deleted ( 4530225 ) on Wednesday July 28, 2021 @06:13PM (#61632049)
    Comment removed based on user account deletion
    • Re: (Score:2, Insightful)

      by Anonymous Coward

      Absolutely inexcusable for this guy to have fallen for this.

      Notice that he provides no details about anything. Why was he talking to "YouTube Support" in the first place? What problem could he possibly be having where deleting everything is the only possible fix?

      Not to mention the most obvious - Google/YouTube is famous for providing zero customer support. Anyone who thinks they are talking to "YouTube Support" is . . . . not very bright.

    • If I hadn't just done so recently, you'd have set me on another read-through of their little "Kimble" saga... love their work.
  • by timholman ( 71886 ) on Wednesday July 28, 2021 @06:19PM (#61632063)

    The first indication that he was being scammed should have been the fact that he actually spoke to a YouTube tech support person on the phone.

    I mean .... I didn't think such a thing was even humanly possible.

    • He's probably a typical Youtube checkmark who's high on his own fumes and thinks "well, of course they'd contact ME personally - I'm important".

      • He's important enough to have been the anonymous star of a BBC Panorama documentary. Hard to understand how this happened, my first thought was that it was a stunt. Or perhaps he'd just got back from a traditional Irish night out.
  • by Anonymous Coward

    The Tech Support Scams YouTube channel, operated by host and creator Jim Browning, was deleted after a tech support scam convinced Browning that the only way to secure his account was to delete it.

    Secure an account by deleting it?

    Is that like securing money by burning it?

    Ok, sure, if the thing isn't there then technically no one can take it, therefore it's secure. But still.... he fell for that?

    • by PPH ( 736903 )

      Delete the System32 folder. It's the only way to be sure.

    • Re:Wait. What? (Score:4, Interesting)

      by CaptQuark ( 2706165 ) on Thursday July 29, 2021 @12:19AM (#61633037)

      The Tech Support Scams YouTube channel, operated by host and creator Jim Browning, was deleted after a tech support scam convinced Browning that the only way to secure his account was to delete it.

      Secure an account by deleting it?

      Sure, tell him something like "Your channel is cross-linked to two different gmail accounts. We can't remove the other owner, but if you delete your channel, we can restore it so it is only linked to your account. The channel should only be down for three minutes while we restore from our near-line backup. The backup will still contain all the comments, ad links, and followers it currently has."

      I'm sure they told him deleting the account was fully reversible and the quickest solution to their made-up problem.

  • I watch his vids and wondered if someone would come after him at some stage. Just crazy.

  • Do we know for sure that this is the real Jim Browning claiming to have been scammed? Maybe a scammer got his accounts!

    Alternatively, do we know for sure that Jim Browning is not trying to scam us? That he is not pretending that he lost his accounts? After all the dark side is tempting and he's been playing with it for a long time!

  • Publicity stunt? (Score:5, Insightful)

    by Dan East ( 318230 ) on Wednesday July 28, 2021 @08:33PM (#61632561) Journal

    Sounds like a publicity stunt to me. I'd never heard about his channel until now, so it's obviously working very well. Especially since he gave a specific date that the channel "may" be back. He'll just make it active or public again tomorrow and pick up many more followers (the channel actually sounds interesting to me, now that I've heard about it).

  • Jim Browning has said the email came from youtube @ creator-partners .com . Try searching for that domain, he obviously didn't.
    • by celeb8 ( 682138 )
      That's what I thought was sad, it was so clearly not youtube support, and they just used the basic windows support scam he always seems so clever about, but with the most obvious not-youtube email address. Jim just had real bad security practices
      • That's what I thought was sad, it was so clearly not youtube support, and they just used the basic windows support scam he always seems so clever about, but with the most obvious not-youtube email address. Jim just had real bad security practices

        Not quite so clear. See the screenshot of the email in Jim's video [youtu.be]. While the scammer used the other domain later, his initial phishing email appeared to be from google.com.

  • that's funny.
  • this sounds like an obvious scam. just not sure who the scammer is.

    but nevertheless, great PR.

Over the shoulder supervision is more a need of the manager than the programming task.

Working...