Windows users encounter unexpected annoyance with latest Microsoft email update
Microsoft warns Windows users of a new phishing scam targeting email accounts associated with the software giant. This hybrid email-phone attack, discovered by Kaspersky, involves unauthorized account takeovers to send emails from Microsoft's [email protected] address.
The emails, appearing as genuine Microsoft purchase confirmations, ask the recipient to call a provided phone number for assistance regarding a large, unexpected expense. However, doing so can expose users to malware and potential financial fraud.
Kaspersky researchers have noticed that the attackers hijack authentic Microsoft 365 accounts to send emails with modified billing information. Once victims call the provided phone number, they are led to believe they are speaking with Microsoft support agents, who then ask them to download "support software" that is actually a malicious Remote Access Trojan (RAT). This malware could provide the attacker with control over the victim's computer and access to sensitive banking information.
The criminals use a combination of stolen Microsoft 365 credentials, trial versions of the software, or the billing information resend feature within Microsoft accounts to send these emails, altering only the contact phone number field to direct responses to the scammers.
As with previous similar scams, doing not recalling the transaction and having no prior record of it in your account should serve as a warning sign. Users are advised not to respond to these emails, contact Microsoft through standard, publicly available channels, and delete the suspicious message immediately.
- Amid the ongoing phishing scam targeting Windows users, it's crucial for cybersecurity professionals to stay vigilant, as the attacks can lead to potential Microsoft and Windows attacks, including a Windows zero day vulnerability.
- In light of the increasing number of technology-based threats, such as the recent Microsoft warning about the phishing scam, it's essential for PC users to be mindful of the upcoming Windows 10 end support, as they may consider upgrading to Windows 11 for free to increase their cybersecurity protection.
