Fraudsters are now posing as Microsoft support staff in order to gain the trust of computer users, and then attempt to hijack their PCs and sell the victim fake security products.
This is according to Mickey Boodaei, the CEO of banking security specialist Trusteer, who warned in a blog posting that his company has been contacted by a user of its Rapport secure log-in system, after she received a telephone call from someone claiming to be from Microsoft Windows Solutions.
The fraudster told her that they were ringing because of error messages from her computer, and he was tasked to help fix any problems she had.
Indeed, the author of this article can personally confirm this after having being approached a couple of times in a similar way by someone claiming to be a member of Microsoft support staff. The author hung up on the person.
Unfortunately, it seems that the woman who contacted Trusteer did not take the same action but instead she was tricked into letting the supposed Microsoft support person remotely connect to her PC. The fraudster then showed her the “viruses which had infected my system.”
The fraudster then tried to con her into buying bogus security products.
“When he tried to sell me some software I ended the call and did not give him any personal details, credit card or otherwise. Nevertheless, I’m worried that my computer may be vulnerable to future attack”, she told Trusteer’s helpdesk.
The victim had apparently followed the fraudsters instructions to access a website and had downloaded a ‘free’ remote access application, that allowed the fraudster to access her computer.
“He then showed me a long list of files – all viruses, he said, and some very dangerous. I told him that I had good security on my computer”, the victim said, adding “I could not understand how that could happen.”
“He said he was transferring me to his supervisor who would solve these problems. The supervisor showed me yet more virus files, which he said were located in a hidden part of the computer and he couldn’t therefore clean it up without Windows 7 being installed (I run Vista) and some new security software,” she said.
Fortunately for the victim, her computer was not infected, but the fraudsters did try to sell her a £300 security application, which they said they could offer her much more cheaply.
“As he rang off, he warned me that my computer was in very bad shape and would crash any day. The call lasted around 20 minutes and I feel like such an idiot to have been taken in for that length of time, and very nervous that they had all the time in the world to infect my computer,” the victim told Trusteer.
“We searched our s
“It’s easy to think that you’d never fall for this type of fraud. But keep in mind that these fraudsters are very experienced and good at what they do. If it’s not you then it could be your friend, your parents, or your spouse who may be taken in by this sort of plausible-sounding security support call,” he added.
A Microsoft spokeswoman confirmed to eWEEK Europe UK that the company is aware of the issue and that it is an going problem. The Microsoft spokeswoman said that they would never contact customers in that way.
“We are aware of scams involving people claiming to be from Microsoft and needing remote access to consumers PCs. These scams are not new,” said Cliff Evans, Security, Identity & Management Lead at Microsoft UK, in an emailed statement to eWEEK Europe UK. “We would like to remind users of Microsoft software that the company does not keep track of consumers that purchase their software and does not directly contact consumers for any reason whatsoever.”
“Do not to trust any caller claiming to be from Microsoft and needing access to your home PC,” Evans added. “We do encourage people to keep safe when online and to always ensure the copy of Windows they are running is genuine and fully up to date. We encourage all PC users to visit http://update.microsoft.com”
“When using a PC that is connected to the Internet we also encourage users to download and install legitimate software to guard against viruses, spyware, and other malicious software,” he said. “Free products such as Microsoft Security Essentials and Internet Explorer will help protect users from online threats and will help everyone realise the Internet’s full potential.”
Google parent Alphabet sees market capitalisation surge over $2tn on plan to over first-ever cash…
Google asks Virginia federal court to dismiss case brought by US Justice Department and eight…
Snapchat parent Snap reports user growth, revenues in spite of tough competition, in what may…
Intel shares sag after company shares gloomy revenue predictions, as data centre chip demand hit…
Germany's Tuta Mail says Google broke EU's new DMA rules with March algorithm update that…
US auto safety regulator opens new investigation into adequacy of Tesla Autopilot recall, saying it…
View Comments
the same happened to me and when the sales pitch come up i decided to quit but am worried if any harm has been done, or in fact if personal details have been taken, nothing has come to light yet but this happened four days ago, whats best cause of action ?
Have had this phone call, was suspicious from the start that a legitimate company would ring me with no prior contact and try to access my computer remotely.
They were using a LogMeIn account and gave me a pass code to access help from a Cisco technician.
When I questioned the caller about the authenticity of their credentials he became annoyed and said that I must allow the firewall to be accessed.
Just hang up.
Same scenario in California. First a woman called to verify that i 'have windows computers', then I was transferred to a "microsoft certified technician' who gained access via an AAMME program and proceeded to lead me both thru my internal performance logs and external web sites to "prove I had been affected by a koobface virus attack that had left a backdoor to my system open" to hackers. Next he offered to fix this and all problems for free, but he required a "security panel" to be installed, and led me to 'onestoppcsolutions.com'. Then he required that I purchase one of the plans offered by that site that start at $228. He pushed that, giving me his employer ID code of MS22259HQ, a name of 'Mike Smith' and a callback number of 201-338-6142. The call lasted over an hour.