Heads up, Windows 10 users–scammers are using new tactics to access your data. On Tuesday, Microsoft’s Malware Protection Center announced that it had learned about new strategies to target those using Windows 10, via links that lead to fraudulent tech support sites.
SEE: Essential reading for IT leaders: 10 books on cybersecurity (free PDF) (TechRepublic)
According to Microsoft, “at least three million users of various platforms and software encounter tech support scams” each month. But the new techniques, which introduce a different layer to the mix, embed links in phish-like emails–and represent a step up from the previous methods used by scammers, potentially leading to a wider pool of victims. Previously, these types of scams involving tech support were done in a cold-call fashion. Now, however, a series of malicious ads will automatically redirect victims to a fake tech support page, in which Windows 10 users are presented with a display of fake Blue Screen of Death (BSOD) or other bogus Windows security alerts, according to ZDNet.
Sending mass emails that pretend to come from popular sites like LinkedIn or Amazon has been a mainstay of online scammers, who include links to fake bank or email login sites. But now, this tactic is being redirected to tech support sites in order to phish credentials.
These sites, according to Microsoft malware protection researchers Alden Pornasdoro, Jeong Mun, Barak Shein, and Eric Avena, “use various scare tactics to trick users into calling hotlines and paying for unnecessary ‘technical support services’ that supposedly fix contrived device, platform, or software problems.”
Once users have clicked on the link that leads to the fraudulent website, they are presented with a host of security-alert pop-ups that aim to drive users to contact the bogus support call center.
In order to prevent these kinds of attacks, Microsoft’s Windows 10, Outlook.com, Edge, and Exchange Online Protection include various security features that aim to block the fake tech support sites and fraudulent emails.
According to Microsoft, Edge users can prevent dialog loops by blocking a certain page from multiplying. And a new Edge feature gives users the ability to shut down browsers or tabs when facing a suspicious-looking popup message.
Interested in reporting a scam? Here’s how you can contact Microsoft’s support page directly.
The 3 big takeaways for TechRepublic readers:
- On Tuesday, Microsoft’s Malware Protection Center announced that it had learned about new strategies to target those using Windows 10 via links that lead to fraudulent tech support sites.
- The scam involves a series of malicious ads that redirect victims to a fake tech-support page, in which Windows 10 users are presented with a display of fake Blue Screen of Death (BSOD) or other bogus Windows security alerts, according to ZDNet.
- Once users have clicked on the link that leads to the fraudulent website, they are presented with a host of security-alert popups that aim to drive users to contact the bogus support call center.
Also see…
- Windows 10 ebook: Prepare, repair, and recover (Tech Pro Research)
- Five reasons to upgrade to Windows 10 (TechRepublic)
- Five reasons not to upgrade to Windows 10 (TechRepublic)
- Windows 10 review: Full of promise, but not a must-have just yet (TechRepublic)
- Windows 10: The end of computing as we know it (TechRepublic)
- Windows 10 and the cloud: Still hazy (ZDNet)
- Windows 10 and Edge: How Microsoft’s new browser could soon challenge Chrome (TechRepublic)
- Why your business won’t use Microsoft’s new Edge browser (Tech Pro Research)
Daily Tech Insider Newsletter
Stay up to date on the latest in technology with Daily Tech Insider. We bring you news on industry-leading companies, products, and people, as well as highlighted articles, downloads, and top resources. You’ll receive primers on hot tech topics that will help you stay ahead of the game.
Delivered Weekdays
