Jump to content
  • Microsoft support 'cracks' Windows for customer after activation fails


    Karlston

    • 3 comments
    • 909 views
    • 4 minutes
     Share


    • 3 comments
    • 909 views
    • 4 minutes

    In an unexpected twist, a Microsoft support engineer resorted to running an unofficial 'crack' on a customer's Windows PC after a genuine copy of the operating system failed to activate normally.

     

    It seems, this isn't the first time either that support professionals have employed such workarounds when under pressure to timely close out support tickets.

    A 'crack' is worth a thousand support tickets

    A South-Africa based freelance technologist who paid $200 for a genuine copy of Windows 10 was startled to see a Microsoft support engineer "crack" his copy using unofficial tools that bypass the Windows activation process. 

     

    Programmer and content creator Wesley Pyburn whose online channels include TCNO (TroubleChute & TechNobo), explains his struggle after purchasing a copy of Windows 10 through legitimate channels:

     

    "I can't believe it. My official Microsoft Store Windows 10 Pro key wouldn't activate. Support couldn't help me yesterday," tweeted the technologist.

     

    "Today it was elevated. Official Microsoft support (not a scam) logged in with Quick Assist and ran a command to activate windows... BRO IT'S A CRACK. NO CAP."

     

    tcno-microsoft-chat.jpg

    Microsoft's support chat session with Pyburn involved engineer running a crack (Twitter)

     

    "It's literally easier to crack windows than to pay for it," exclaimed Pyburn.

     

    Microsoft Product Activation, as commonly seen in Windows and Office products, is Microsoft's DRM technology to ensure users are running company's genuine products as opposed to pirated versions, and are compliant with the license terms.

     

    Windows XP-era users may also be familiar with Windows Genuine Advantage (WGA), a validation process that Microsoft earlier enforced to automatically 'deactivate' pirated OS copies.

     

    "Activation helps verify that your copy of Windows is genuine and hasn't been used on more devices than the Microsoft Software License Terms allow," according to Microsoft.

     

    Microsoft's official Windows activation methods involve either the customer entering a 25-character product key when prompted, or signing in with their Microsoft account to apply a digital license. In some cases, customers may also call the customer care to "activate by phone."

     

    windows-10-activation.jpg

    Typical Microsoft Windows 10 activation dialog prompting for a key (Microsoft Community)

     

    By contrast, software "cracks" and stolen product keys are commonly used by users looking to pirate software—something which is forbidden both by a company's licensing terms and by law in most jurisdictions.

     

    The Microsoft support engineer in this case, ran the following PowerShell command on the customer's Windows PC (URL slightly modified to prevent execution):

     

    irm hxxps://massgrave[.]dev/get | iex

    The command establishes a connection to massgrave.dev, an unofficial repository of Windows and Office "activator" scripts that may slip under the radar of most antivirus products.

     

    Further, the Invoke-Expression aka iex command runs the downloaded script, as seen by BleepingComputer:

     

    massgrave-dev-script.jpg

    Windows 10 activation script from Massgrave.dev

     

    "Working in IT I can 100% believe this lmao, commented one user.

     

    "They're probably as dumbfounded by the issue as you and/or don't have a better solution and it solves the problem/resolves the ticket so they're happy."

    Cracks, warez, pirated software pose risks

    Using "warez," cracks, and other unofficial means to bypass software copy protection are often frowned upon. Other than falling in a legal gray area and being akin to pirating software, these methods pose a security risk. For example, third-party scripts claiming to be software 'cracks' may instead be malware.

     

    To clarify if what Microsoft support agent had run was indeed a crack, Pyburn reached out to Massgrave's staff via Discord.

     

    Not only did the website staff reply affirmatively to the technologist's question, they further claimed, it wasn't the first time they'd heard of a Microsoft engineer doing this.

     

    "This is the second time someone reported here that it's being used by Microsoft support agents. It's not official and not legal," writes WindowsAddict, a Massgrave staff member.

     

    massgrave-discord.jpg

    Massgrave Discord staff suggests Microsoft support often uses these tools 

     

    Naturally, such workarounds when employed by a software company's support staff would leave just about anyone startled.

     

    "I can not believe Microsoft's answer to a broken activation system is to crack windows via official support channels," says Pyburn.

     

    "...AND IT WAS OFFICIAL SUPPORT. The entire reason I paid was to avoid rootkits and other malware COMPLETELY. Then they crack it for me."

     

    BleepingComputer approached Microsoft for comment in advance of publishing. We have not heard back yet.

     

     

    Microsoft support 'cracks' Windows for customer after activation fails


    User Feedback

    Recommended Comments

    18 hours ago, debebee said:

    Tech support just got lazy.. 

    Heads might roll... at MS

    I think the other way around.

     

    A person, or persons who actually knows how to defeat M$ security is an extremely valuable person who if I would be them (M$) would consider a prime target for acquisition.  THINK ABOUT IT.  Reverse engineer the reverse engineer's work.

     

    FASTEN YOUR SEAT BELT

    Edited by Nuclear Fallout
    Link to comment
    Share on other sites




    Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.
    Note: Your post will require moderator approval before it will be visible.

    Guest
    Add a comment...

    ×   Pasted as rich text.   Paste as plain text instead

      Only 75 emoji are allowed.

    ×   Your link has been automatically embedded.   Display as a link instead

    ×   Your previous content has been restored.   Clear editor

    ×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...