Microsoft Doesn’t Call: Scams and Tricks to Steal Your Money
By Jennifer Yeagley
Have you ever been sitting at your computer and gotten a pop-up stating you have a problem with your computer? Or have you gotten a phone call from a tech support company (or Microsoft directly) stating that your computer has an issue that needs immediate attention? SCAMS! Every week, we field phone calls from clients saying that their computers have been compromised and they need help! Unfortunately, about half of these folks have already fallen for the scam and either provided access to their computer or given financial information. Please do not fall for this trick! Microsoft doesn’t call you!!!
Tech Support Scams
Scammers play on our fears of losing out on something good or having something taken away from us. When it comes to tech support scams, the scammers are trying to provoke a fear of losing your data or computer access. There are two common methods to engage you in a tech support scam. The first is a tech support company calling and alerting you that your computer has a problem. The second is through a pop-up on your computer that provides you with similar messaging about an issue but asks you to call a number provided or click a link. In this case, you likely have something on your computer that prompted that pop-up, but it likely only has the function of creating the pop-up. You probably clicked on something online that installed a little program to run that pop-up. These are harmless unless you call the number, but they can be removed with good security software.
So, regardless of who initiates the call, the tech support scam works the same way. They say they can fix the problem, but you must pay them and allow them to remote into your computer. After remoting into your computer, they “run a diagnostic test” showing a problem. They are running a program designed to look like a real test but will always show a problem. You give permission to fix and give them financial data like a credit card number or check information. Some scammers will insist on some random form of payment, such as gift cards, cryptocurrency, or other methods. This should be a HUGE red flag! They show you they have fixed the problem, and everyone is happy. There are two big problems, though. First, the scammers likely installed something on your computer to steal information or allow them to break into your system quickly. Second, they now have financial information and often use it later.
What can you do?
Many people fall for this scam, so let me give you what to do or not do before, during, and after the fraud.
BEFORE:
- Run security software (antivirus, malware scans, etc.) regularly to reduce the risk of scam software being on your computer.
- Find a quality technician you can trust. Just as you might find a trusty mechanic for your car, having a technician for your computer is a smart step.
- Educate yourself on scams and how they play out. It is hard to dupe a person who knows about the scam.
DURING:
- Ask questions about how they know of the issue on your computer. Get specific information from them regarding their company and the caller’s information. Google everything to determine if a scam has been reported online for the number, the company, or the location. If there is somehow a legitimate reason (unlikely), then getting this information should confirm it for you.
- Do not allow them to remote into your computer. See if you can scan your system to verify an issue. If there is a problem with your computer, someone may have to remote into the system to clear it up; however, it should be that quality technician you researched before rather than the shady person on the phone. Tell the scammer you will call them back or get off the phone to delay their interaction. If you are challenging, they will move on.
- If you allow the scammer remote access to your computer, watch the entire process. You may be able to see if they add something to your system.
- DO NOT give financial information in any form to the scammer! If your computer has an issue, you may need to pay someone to fix it. Until you have verified proof that you are on the phone with someone legitimate, do not pay them. Furthermore, you can ask to use a 3rd party payment site, like QuickBooks, to get an invoice and pay there. Why? In that case, the scammer would not have your payment information, as the other vendor protects it.
AFTER:
- If you have gone through the entire process with the scammer and regret it, don’t be embarrassed. Honestly, it happens a lot. Scammers are good at creating a sense of urgency and making you believe you have a problem. Additionally, scammers like doing more of this around the holidays when we are stressed about other things. The mood makes it easier to break through your defenses.
- Call your trusted technician to examine your computer. If you don’t have one, 😊 I know a good one! They can find any malware or ransomware left on your system.
- Contact your financial institution. If you used a credit card or banking information, calling may allow you to cancel the transaction. If that is not possible, at least alert them to the fraud. In many cases, scammers will charge fees after the initial date of contact with you. Your bank can terminate those transactions before releasing the funds.
- Change your password. Update your security measures, in general, to ensure that the scammers no longer gain access to your system after it is cleaned up.
- Report the scam to the FTC at ReportFraud.ftc.gov. This allows scammers to be tracked and a case to be created against them.
- Talk about your experience with friends and family. I know no one wants to acknowledge that they have been scammed, but talking about the event prevents others from falling for it. Do not allow your friends and family to experience the same thing if you can help them avoid it.
Other Scams
While this blog is mostly about tech support scams, I want you to be aware of other types of common scams that may work similarly to get your financial information or access to your computer. This is not an exhaustive list, but that’s because scammers are getting more creative every day!
- Refund Scams—These often occur after the tech support scam. You are asked about the service call. If you state that you are unhappy with it, the scammer will initiate a refund. That sounds great until you realize that they are again fishing for your financial information.
- Survey Scams—If you complete a survey, you will not get a million dollars, and it is unlikely that pop-up or email surveys are legitimate. Some sites with vetted surveys pay, but you would rarely get to those through pop-up ads.
- Government Money Ads – If you see an ad promoting free money from the government, pay attention to the agency providing the funds. Go directly to that agency’s website or contact them directly to determine the claim’s validity. Do not follow the links through to a point where you give away your personal information.
- Venmo/Cash Applications—It is becoming more common for someone to send you cash, “realize” their mistake, and request that you return it. Being the good person that you are, of course, you send it back. Then you find out they canceled the original transaction, so you are out whatever money you sent.
- Sponsored Ads—When you search for a service, the first links are typically sponsored or paid for by someone promoting their service. Be wary. Scammers pay for this so that you trust them and provide them with your information. It is sometimes difficult to tell the legitimate sites from the scams.
- Phony Emails – You may receive emails or texts from organizations that seem legitimate. If there is a warning from Facebook that an unrecognized source has used your login, you want to take that seriously. However, you should generally not click links in emails when it is avoidable. Furthermore, check out the email address. If that warning came from TomTom@gmail.com, that notification is FAKE! Make it your practice to look at email domains every time to ensure you are not getting duped!
In the end, the idea is to be safe, be savvy, and make good choices! Good luck!