Scams and online fraud have become an unfortunate reality. One such scam that has gained notoriety is the “Microsoft scam”, which aims to trick unsuspecting individuals into believing they are dealing with Microsoft representatives. We look at how the Microsoft scam works and share our essential top ten tips on identifying it and protecting yourself from falling victim.

What is the Microsoft Scam?

The Microsoft scam is tech support fraud, where scammers impersonate Microsoft employees to fool individuals into giving up personal information, providing remote access to their computers, or making fraudulent payments. These scammers often use various tactics to create a sense of urgency and fear.

How Does the Microsoft Scam Work?

1. Unsolicited Contact: Scammers are inventive and persistent in their attempts to take over your system using various methods to initiate contact. Typically, they make unsolicited phone calls, send emails, or display pop-up messages on your computer claiming to be from Microsoft. Or, they might display fake error messages on websites that you visit and display a support number enticing you to call, or put your browser in full-screen mode and display a pop-up message that won’t go away, giving the impression of locking your browser. They often use scare tactics, such as saying your computer has been infected with a virus, has been hacked, has encountered an error or has security issues. They may also say that your software license has expired or that you’re owed a refund. Each method is aimed to scare you into calling their ‘technical support hotline’.

2. False Claims and Urgency: To gain your trust and cooperation, scammers will create a sense of urgency, emphasising the severity of the issue. They might claim that immediate action is required to prevent data loss, financial theft, or legal consequences.

3. Manipulation Tactics: To gain your trust, scammers often use technical jargon and may even spoof caller IDs to make it appear as though they’re calling from a legitimate Microsoft number. They may also ask you to visit a fake website that looks like a Microsoft support page.

4. Remote Access or Installation: Eventually, the scammer will request remote access to your computer, asking you to install software that allows them to take control. Once they gain access, they can retrieve personal information such as usernames, passwords, and financial data, install malware, or modify settings to perpetuate the scam.

5. Payment Requests: Alternatively, scammers may attempt to extract money from victims by offering technical support services for the supposed issue or falsely claiming to sell software licenses. They often request payment via electronic transfer, prepaid debit cards, or other untraceable methods, making it difficult to recover the funds.

PC Man’s Top 10 Tips To Protecting Yourself from the Microsoft Scam

1. Be Vigilant: Be cautious when interacting with unsolicited communications. Maintain a healthy scepticism and verify the legitimacy of the contact before taking any action. Remember, Microsoft will never initiate unsolicited contact regarding technical issues, errors, or viruses on your computer. Be sceptical if someone claiming to be from Microsoft contacts you without your prior request for assistance. Scammers can spoof caller IDs or forge email addresses to give the appearance that they are contacting you from a legitimate Microsoft source. Do not solely rely on these details as proof of authenticity.

2. High-Pressure Tactics: Scammers often use fear and urgency to manipulate victims. Legitimate tech support agents will not rush or pressure you into making immediate decisions or divulging personal information.

3. Requesting Remote Access: Microsoft will never contact you to ask for remote access to your computer. Never grant remote access to an unsolicited caller or click on any suspicious links or pop-up messages.

4. Payment Methods: Microsoft does not accept payment via electronic transfer or prepaid debit cards for technical support services or software purchases. Exercise caution if asked to make payments using these methods.

5. Contact Microsoft Directly: If you receive an unsolicited call or message claiming to be from Microsoft, independently verify its authenticity by contacting Microsoft’s official customer support channels. Use contact information from their official website or software documentation.

6. Install Reliable Security Software: Keep your computer protected by installing and regularly updating reliable antivirus and anti-malware software. This can help detect and prevent potential threats, including scam-related malware.

7. Enable Two-Factor Authentication: Enable two-factor authentication (2FA) for all your online accounts, including Microsoft, whenever possible. This adds an additional layer of security to your accounts by requiring a secondary verification step, such as a code sent to your mobile device, in addition to your password.

8. Educate Yourself and Others: Stay informed about the latest scams and educate yourself, friends, family and colleagues about the tactics scammers use to initiate the Microsoft scam and other fraudulent online activities.

9. Protect Personal Information: Be cautious about sharing personal information online, especially through unsolicited requests or unsecured websites. Microsoft will never ask for sensitive personal information such as passwords or financial details via unsolicited communication.

10. Report Scams: If you have encountered a Microsoft scam or any other fraudulent activity, report it to the National Cyber Security Centre and notify Microsoft about the scam through their official channels so they can take appropriate action and alert other users.

The Microsoft scam continues to be a prevalent online fraud that targets individuals through deceptive tactics and impersonation. By familiarising yourself with the workings of this scam and being vigilant, you can significantly reduce the risk of falling victim to it. Remember to verify the legitimacy of any unsolicited communication, never grant remote access to unknown individuals, and be cautious when asked for personal or financial information.

If you have been affected by this scam and want to check your computer for malware or would like to improve your security software, please don’t hestitate to contact PC Man on 020 3369 0669.

Photo by Johnyvino on Unsplash