Endpoint

12/27/2017
08:00 AM
Steve Zurier
Steve Zurier
Slideshows
Connect Directly
Twitter
RSS
E-Mail
50%
50%

6 Tips to Protect Against Technical Support Fraud

Just when you're having fun over the holidays and not paying attention, you can be hit with a tech support scam. Here's how to stay safe into the new year.
Previous
1 of 7
Next

Image Source: towfiqu barbhulya via Shutterstock

Image Source: towfiqu barbhulya via Shutterstock

Tech support scams have become big business for criminals, so don’t expect them to stop over the holidays. In fact, the FBI’s most recent Internet Crime Report lists tech support fraud as one of the top cybercrime trends, costing victims some $8 million last year alone.

Since 2015, according to a Microsoft spokesperson, the company has received more than 300,000 customer reports of tech support fraud and the software company receives an average of 12,000 reports of tech support scams a month worldwide.

Microsoft’s global survey conducted in 2016 also reported that two out of three consumers have experienced this type of scam, with one in five losing money to the fraudsters. On an interesting note, Microsoft found that millennials between the ages of 18 and 34 are actually more apt to be the victim of a tech support scam than people over 55. 

The FTC said the scammers run ads that resemble pop-up security alerts from Microsoft, Apple, or other prominent technology companies. Users are warned that their computers are infected with viruses or are under attack by hackers. Some of the pop-ups even feature a countdown clock, allegedly showing the time remaining before the hard drive will fry unless the consumer calls a toll-free number claiming to be affiliated with one of the big-name technology companies.

Once operators have consumers on the phone, the operators claim to need remote access into the victim’s computer so they can run so-called diagnostic tests. This is the gravest danger.  At all costs, people should not let people they don’t know access their computers. The tests the scammers run claim to reveal grave problems that can only be solved by one of their “certified technicians.” Companies use high-pressure tactics to strong-arm consumers into paying several hundred dollars – sometimes more -- for unnecessary repairs, anti-virus software and other tech support products and services. 

The FTC has cracked down on these fraudsters, prosecuting many of them earlier this year as part of its Operation Tech Trap.

Based on interviews with the FTC’s Will Maxson, Microsoft and Michael Kaiser of the National Cyber Security Alliance, we developed a list of six tips for users. Computer security geeks spending time with family members over the holidays may want to point out this story to friends and relatives who have questions or believe they have been the victim of a tech support scam.

Check this link for more consumer information from the FTC on tech support scams.

 

 

Steve Zurier has more than 30 years of journalism and publishing experience, most of the last 24 of which were spent covering networking and security technology. Steve is based in Columbia, Md. View Full Bio

Previous
1 of 7
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
maklonkosmetik
50%
50%
maklonkosmetik,
User Rank: Apprentice
1/8/2018 | 9:01:12 PM
Re: Excellent advise to pass around...
Wow.. these tips are very useful. During the holidays we often neglect the security. thank you for reminding me of this
Marilyn Cohodas
100%
0%
Marilyn Cohodas,
User Rank: Strategist
12/28/2017 | 1:31:36 PM
Excellent advise to pass around...
Very useful info to share during this holiday season...
It Takes an Average of 3 to 6 Months to Fill a Cybersecurity Job
Kelly Jackson Higgins, Executive Editor at Dark Reading,  3/12/2019
Cybercriminals Think Small to Earn Big
Dark Reading Staff 3/12/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: LOL  Hope this one wins
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
The State of Cyber Security Incident Response
The State of Cyber Security Incident Response
Organizations are responding to new threats with new processes for detecting and mitigating them. Here's a look at how the discipline of incident response is evolving.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-6149
PUBLISHED: 2019-03-18
An unquoted search path vulnerability was identified in Lenovo Dynamic Power Reduction Utility prior to version 2.2.2.0 that could allow a malicious user with local access to execute code with administrative privileges.
CVE-2018-15509
PUBLISHED: 2019-03-18
Five9 Agent Desktop Plus 10.0.70 has Incorrect Access Control (issue 2 of 2).
CVE-2018-20806
PUBLISHED: 2019-03-17
Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter).
CVE-2019-5616
PUBLISHED: 2019-03-15
CircuitWerkes Sicon-8, a hardware device used for managing electrical devices, ships with a web-based front-end controller and implements an authentication mechanism in JavaScript that is run in the context of a user's web browser.
CVE-2018-17882
PUBLISHED: 2019-03-15
An Integer overflow vulnerability exists in the batchTransfer function of a smart contract implementation for CryptoBotsBattle (CBTB), an Ethereum token. This vulnerability could be used by an attacker to create an arbitrary amount of tokens for any user.