Online scams are using Apple and Microsoft's trusted brands to deceive you.

Online scams are using Apple and Microsoft's trusted brands to deceive you.
Online scams are using Apple and Microsoft's trusted brands to deceive you.
  • Trusted tech brands like Apple and Microsoft are increasingly being used by online scammers to trick people into revealing sensitive information.
  • The release of Apple's new iPhone has increased the risk of scams, experts warn.
  • Recent cybercrime campaigns involved posing as Microsoft support and Apple Mac extended warranty services.

No, it's not actually Apple or Microsoft appearing on your screen to inform you that your computer is infected.

Scammers are attempting to deceive you into disclosing confidential information, such as passwords, financial data, or Social Security numbers, by urging you to call them.

""According to Cliff Steinhauer, director of information security and engagement at The National Cybersecurity Alliance, they utilize the brand reputation of Microsoft or Apple to establish legitimacy," he stated."

With the release of Apple's new iPhone, consumers may encounter more scams, as scammers often take advantage of news headlines to strike when a new product or version is launched, according to Nati Tal, head of Guardio Labs. In a short period, these scammers can potentially target a large number of victims.

Tech support scams are a common type of fraud that can affect anyone, but the elderly are particularly vulnerable. In 2023, the FBI's Internet Crime Complaint Center received nearly 18,000 reports of tech support scams from victims aged 60 and over, making it the most widely reported form of elder fraud. The losses from these scams totaled $590 million, and it is estimated that this is only the tip of the iceberg.

To protect themselves from scams targeting commonly used and trusted tech brands, people should be aware that these types of scams are becoming increasingly difficult to detect due to the use of AI.

Never assume any online ad is authentic

Malvertising is one way people can be deceived, where bad actors pay for ads on search engines like Google or Microsoft's Bing, appearing as sponsored content or in small print as an ad during a search query.

Malwarebytes has identified a number of schemes where scammers use fake ads to trick consumers into calling them for Microsoft support. These scams are designed to play into people's hands, according to Malwarebytes. Additionally, Malwarebytes uncovered a malicious ad campaign targeting Mac users looking for support or extended warranty from Apple.

Jérôme Segura, senior director of research at Malwarebytes, stated that people often encounter issues with their computers and seek assistance, but many of the phone numbers they find may be fraudulent rather than legitimate.

Pop-ups, emails from brands you know are often suspect

Phishing emails from reputable companies such as Microsoft, McAfee, PayPal, and Norton can trick unsuspecting consumers into clicking on links or opening attachments that contain malware or steal personal information.

An alternative version of the sentence could be: When a pop-up window appears on a user's computer, claiming an "infection," it could be a type of tech-support scam.

Pop-ups may have audio to create a sense of urgency and a "return to safety" button that changes the browser window to a full-screen page with a message about a computer infection.

Hearing a non-stop audio playing in the background stating that your computer is compromised can be very stressful and may lead people to make a poor decision by calling a fake phone number.

When individuals receive calls, they are frequently coerced into disclosing sensitive information like their credit card number or granting scammers remote access to their computer.

How to click without getting into online trouble

To safeguard themselves from potential threats, consumers should steer clear of clicking on sponsored ads or random links in search results or emails, and only open attachments from known senders.

Segura advised that clicking on the browser's own icons, typically located at the top right corner, is the general rule when a pop-up warning of a computer virus appears. He cautioned against clicking on any other "X" within the web page, as it is likely to be a fake.

If people click on the X or have clicked on "return to safety," the webpage will likely go into full-screen mode. If that happens, you must first exit out of full screen by long pressing on the keyboard's escape button (Esc) before you can finally X out.

Ensure your browsers are updated and consider installing a free or paid protection service that guards against various threats.

What to do if you fall for a tech scam

If you gave scammers sensitive information such as usernames and passwords, change those immediately. However, if you only shared your name, address, and phone number, there's no need to take any additional steps because this information is already readily available to scammers through data brokers, according to Jim Routh, chief trust officer at identity security company Saviynt.

If you've shared your credit card details, contact your credit card company's fraud line immediately and request an overnight delivery of a new credit card.

If a fraudster gains access to your online accounts using shared credentials, it's crucial to change the password for each account immediately. Additionally, it's wise for consumers to freeze their credit with each of the three primary credit bureaus, Equifax, Experian, and TransUnion. This practice is beneficial for the entire family, particularly for children under 18, even in the absence of a specific threat. It's also advisable to place a fraud alert with one of the credit bureaus, which will notify all three.

If individuals are worried about malware installation without anti-virus protection, they should opt for a reliable brand and install it. If they lack technical expertise, they can contact the Geek Squad or a similar service to scan their workstation and remove the malware. Consumers who have granted remote computer access to scammers should bring their device to a professional for help, Routh advised.

by Cheryl Winokur Munk

Technology