Phishing attacks are always evolving and trying to force us into ignoring our own good sense. A common attack is the infamous technical support scam. Historically, this involved a phone call from someone claiming you need help with your computer, an email message that directed users to fake sites where malware was installed, or a fake tech support popup message requesting payment card numbers. While those are still common, Microsoft researchers have discovered a new play on this scam.
Lately, modified phishing email messages appear to be from reputable and well-known companies. They’ve used Amazon, LinkedIn, and Alibaba so far, but more are likely around. They use social engineering to trick the user into clicking on links that take them to fake technical support websites. Some of the ruses are that an order was cancelled or there is a LinkedIn notification waiting. In some cases, users give up payment card information, but in others, popup windows keep appearing. Another one is a never-ending dialogue loop throwing up fake tech support warnings with fake phone numbers where the user can get “help.”
Never fall for these. They are getting more popular as technology perhaps gets more technical. According to some figures, 3 million people are victims of these each month.
For additional articles on identity theft and more, visit the Logix Security Center.