Pam got a call just a few weeks ago from someone stating they were from Microsoft and they had noticed that her computer was infected and would like to help her get it cleaned up. These scam calls started several years ago and they will continue because too many folks are still falling for it. The sophistication level of this scam continues to fool people, but the bottom line is that Microsoft (or any other legitimate company) will never call you out of the blue to help you with a problem you didn’t know you had.
The closest exception is that your ISP (Internet Service Provider) could send you a warning e-mail if an infected computer is identified as causing problems from your home or business via your Internet connection, but even they wouldn’t call you on the phone.
Microsoft is well aware of these scams, but there really isn’t much that they can do to stop it since these scammers pop-up out of thin air on a regular basis and have clever ways to mask who they really are.
In most cases, this is a ‘cold-calling’ technique used by unscrupulous computer service organizations, generally from foreign countries, that are simply trying to con folks out of their money. They randomly call phone numbers in the US, because they know that virtually everyone they call will have a computer and the odds are pretty good that they have a Windows-based computer.
We’re starting to see more variations of this scam that don’t always use Microsoft’s name but the intentions are the same: trying to scare you into letting them access your computer to fix it for a fee. They use clever tricks for convincing you that you do have a problem, if they can keep you on the phone long enough (so hang up as quickly as you can!)
Pam, being in the business and wise to these types of scams, took a slightly different view of this scammer and rebuked the person on the phone telling them they should be ashamed of themselves for trying to steal from innocent people, why don’t you get a real job and so on… They hung up on her!
They’ll try to convince you by having you run some ‘diagnostics’ yourself as proof.
One tactic they use is to get the victim to open the Windows Event Viewer, which has a log of any errors that Windows has detected. Unless you just recently installed Windows, your Event Log is bound to show some errors (very normal), which can be made to seem scary to non-technical users. Another trick is to get you to drop to a command prompt (black background with white text) to check your system ID and run a verify command, which will return the message that ‘verify is off’. They will then tell you that your computer ID can’t be verified which means your computer hasn’t been able to get Windows updates (which is completely false; the verify command is to verify that data has been written to a hard drive correctly).
The caller may even guide you to pull up something that they claim is a system certificate that has a 2011 date, which they will try to convince you means your computer hasn’t been updated since then As you can see, if you follow their instructions, they can easily trick a non-technical victim into believing that their computer really is infected and allow ‘Microsoft’ into their computer remotely to fix it.
Remote service is perfectly fine and safe, but only when you instigate the call for help and it is provided by a trusted source.
Read More about these scams as well as how to report them to Microsoft:
http://www.microsoft.com/security/online-privacy/avoid-phone-scams.aspx