Aggressive, persistent Windows tech support scammers continue to stalk consumers
'No signs of slowing down,' says Microsoft of bogus phone calls; Computerworld sees a spike in reports from readers
Computerworld - Scammers posing as Microsoft support technicians continue to work the phones in search of victims, the company said last week, and have, in fact, grown bolder in their tactics.
And in the last few weeks, Computerworld has seen a spike in the volume of reports from readers who have been targeted by fake support schemes.
"What's really alarming is that this type of scam shows no signs of slowing down," said Kirsten Kliphouse, the Microsoft executive who heads the company's customer service and support group, in a May 2 blog. "Increasingly, we hear via our front-line support team, and even from friends and family, that these scammers are getting bolder, targeting not only individuals but also businesses."
The scams rely on a combination of aggressive sales tactics, lies and half-truths. Cold callers pose as computer support technicians, most often claiming to be from Microsoft, and try to trick victims into believing that their computer is infected, usually by having them look at a Windows log that typically shows scores of harmless or low-level errors. At that point, the sale pitch starts, with the caller trying to convince the consumer or business worker to download software or let the "technician" remotely access the PC.
The fraudsters charge for their worthless "help" or sell subscriptions to useless services, and sometimes install malware on PCs while they have the machines under their control.
These scams became increasing common in 2010, picked up enough steam in 2011 that Microsoft warned Windows users to be on guard, and in October 2012 prompted the U.S. Federal Trade Commission (FTC) to file charges against six operators. Then-FTC chairman Jon Leibowitz said during a news conference announcing the lawsuits that the fraudsters took "scareware to a whole other level of virtual mayhem."
In 2013, the FTC settled with three of the alleged scammers -- in one instance, imposing a $964,000 judgment, in another just $14,000 -- but its investigations, accusations and penalties have done little to stem the tide of calls.
Computerworld has received a steady stream of emails from readers of past news stories about the scams, but the volume of those messages jumped significantly last month. Many knew better than to let the caller into their PC, but simply wanted to tell someone about their experience in the hope of warning others of the danger.
"Got a call last night from India -- I could tell it was a large call center," wrote Kristen H. last month in an email. "I knew immediately that it was a scam but talked to the guy anyway who assured me I had something drastically wrong with my PC. Anyway, when I called him a scammer, he got mad and hung up on me -- I tried to call the number back, but got a message saying the number had been disconnected."
- Ballmer quits Microsoft board, cites NBA commitments
- In his own words: Best quotes of Steve Ballmer
- Update: Microsoft pulls crippling patch from Windows Update
- New Microsoft same as the old Microsoft
- Microsoft urges customers to uninstall 'Blue Screen of Death' update
- Windows 'Threshold' to go public within weeks
- Microsoft: Give IE another chance
- The news isn't good for Windows Phone
- Deja vu all over again: Windows 7 will be the new XP
- Microsoft postpones IE's Java blocking after IT complains
- Transforming Information Security: Future-Proofing Processes This report provides a valuable set of recommendations from 19 of the world'd leading security officers to help organizations build security strategies for...
- The Evolution of Corporate Cyberthreats Cybercriminals are creating and deploying new threats every day that are more destructive than ever before. While you may have more people devoted...
- 3 Questions to Ask Your DNS Host about Lowering DDoS Risks Neustar has had wide-ranging conversations with clients wanting to know how they can optimize protection as DDoS attacks increase in frequency and size.
- The Danger Deepens: 2014 Neustar Annual DDoS Attacks and Impact Report This report compares DDoS findings from 2013 to 2012, based on a survey of 440 North American companies, including 139 businesses delivering technology...
- Establish Cyber Resiliency: Developing a Continuous Response Architecture Many enterprises fail to proactively prepare the battlefield for a data breach by only leveraging outdated techniques that focus on the perimeter or...
- An Incident Response Playbook: From Monitoring to Operations As cyber-attacks grow more sophisticated, many organizations are investing more into incident detection and response capabilities. In this webcast, learn how to develop... All Cybercrime and Hacking White Papers | Webcasts