My network has been hacked?
Let me start by saying that I've got a home network connected to my Comcast cable modem that is entirely Cisco Meraki, with a Meraki MX68CW serving as the firewall/router. I'm a CCIE-certified network engineer, as well.
So it was a bit of a shock to get a call purporting to be from Comcast this afternoon (1-800-226-2278) saying that they had information that my home network was compromised. The rep did provide my name and address (on his second try, he named someone else first) and then tried to tell me that something on my network was hacked and that he would help me fix it. I expressed concern and shock, since I can quite quickly and easily see every device that is connected to my home network (nothing unusual) and can run a packet capture remotely at any time (again, nothing unusual while I was speaking with him).
He gave me a public IP address that he said is attaching to my home network and doing "illegal things" from my public IP address. When I said that I would follow his steps to fix it, he had me open the network utility in Mac and look at connected IPs. Of course, the IP address that he had wasn't listed there.
At this point, he offered to send a tech "free of charge" to fix this issue. I said sure, send a tech, let's see what he can do. Then he said great, they can send one for $110. I declined.
Is this some kind of scam? What the heck is going on?