Video: Microsoft AI tools to take down Windows support scam masterminds
Tech-support scammers are testing new phone-call prompts to trick unsuspecting users into calling a bogus hotline, says Microsoft.
The prompts are just the latest innovation developed by fraudsters to dupe users into paying for fake support for non-existent issues, according to Microsoft's Windows Defender Research team.
Tech-support scams are all about deception and trickery, such as fake Blue Screen of Death (BSOD) warnings and other browser pop-ups with fake security warnings that invariably aim to convince users to call a hotline and pay to fix a contrived security problem.
Scams often try to get victims to provide the operator with remote access using tools like LogMeIn Rescue and TeamViewer to improve the chances of victims feeling they need to pay for a fix.
It's a lucrative business for the scammers, some of whom have been caught in recent crackdowns by the Federal Trade Commission.
Microsoft and Google have rolled out features in their respective browsers to address these intrusive dialog boxes. Edge, for example, allows users to close the browser even when there is an active dialogue box.
A victim would still need to press call but the technique allows scammers to use simpler communications, such as, "We're here to help" rather than legit-looking system warnings.
As noted by Microsoft, the scam site is targeting both Apple and Microsoft users and caters to users of desktops and smartphones.
Instead of scary dialog boxes, the site Microsoft found plays an audio message to warn users about a supposed "critical alert from Apple support". The message reads:
"Critical alert from Apple support. Your mac has alerted us that your system is infected with viruses, spywares, and pornwares. These viruses are sending your credit card details, Facebook logins, and personal emails to hackers remotely. Please call us immediately on the toll-free number listed so that our support engineers can walk you through the removal process over the phone. If you close this window before calling us, we will be forced to disable and suspend your Mac device to prevent further damage to our network. Error number 268D3."
Microsoft believes the tech-support scam site is being sold as a service on cybercrime forums.
Previous and related coverage
Tech support scammers are borrowing phishing techniques from criminals who seek online credentials.
They're after one thing -- money. And when they can't get it, they'll resort to any means necessary.
Don't call that toll-free number if you see what looks like a security alert in your browser.
Read more about scams and security
- Researchers find 450,000 financial scams operating on social media
- Windows support scams: Here's how we're taking down fraud kingpins, says Microsoft
- Now tech support scams are exploiting WannaCry ransomware fears
- 6 tips for avoiding scams on Facebook Marketplace [CNET]
- IoT security: Keeping users on their toes means staying on yours [Tech Pro Research]