I've been continuing to receive a number of reports from friends, family and clients about these calls from "Microsoft" telling them their PC requires service. In one case, I actually know a person who had them "service" his PC twice, paying them approximately $150 the first time and $250 the second. Unfortunately, these calls are not from Microsoft, and are instead being carried out by criminal enterprises. While most folks know better by now, believe it or not I was just asked TODAY by a client if this is legit or not.
If you own a business, I would suggest forwarding the following info from Microsoft to your entire organization to avoid falling prey to this. It only takes one (well intentioned) staff member to give criminals access to all of your sensitive information.
Avoid tech support phone scams
Cybercriminals don't just send fraudulent email messages and set up fake websites. They might also call you on the telephone and claim to be from Microsoft. They might offer to help solve your computer problems or sell you a software license. Once they have access to your computer, they can do the following:
Trick you into installing malicious software that could capture sensitive data, such as online banking user names and passwords. They might also then charge you to remove this software.
Convince you to visit legitimate websites (like www.ammyy.com) to download software that will allow them to take control of your computer remotely and adjust settings to leave your computer vulnerable.
Request credit card information so they can bill you for phony services.
Direct you to fraudulent websites and ask you to enter credit card and other personal or financial information there.
Neither Microsoft nor our partners make unsolicited phone calls (also known as cold calls) to charge you for computer security or software fixes.
Telephone tech support scams: What you need to know
Cybercriminals often use publicly available phone directories, so they might know your name and other personal information when they call you. They might even guess what operating system you're using.
Once they've gained your trust, they might ask for your user name and password or ask you to go to a legitimate website (such as www.ammyy.com) to install software that will let them access your computer to fix it. Once you do this, your computer and your personal information are vulnerable.
Do not trust unsolicited calls. Do not provide any personal information.
Here are some of the organizations that cybercriminals claim to be from:
Windows Service Center
Microsoft Tech Support
Windows Technical Department Support Group
Microsoft Research and Development Team (Microsoft R & D Team)
Report phone scams
Help Microsoft stop cybercriminals by reporting information about your phone scam.
In the United States, use the FTC Complaint Assistant form.
In Canada, the Canadian Anti-Fraud Centre can provide support.
In the United Kingdom, you can report fraud as well as unsolicited calls.
Whenever you receive a phone call or see a pop-up window on your PC and feel uncertain whether it is from someone at Microsoft, don’t take the risk. Reach out directly to one of our technical support experts dedicated to helping you at the Microsoft Answer Desk. Or you can simply call us at 1-800-426-9400 or one of our customer service phone numbers for people located around the world.
How to protect yourself from telephone tech support scams
If someone claiming to be from Microsoft tech support calls you:
Do not purchase any software or services.
Ask if there is a fee or subscription associated with the "service." If there is, hang up.
Never give control of your computer to a third party unless you can confirm that it is a legitimate representative of a computer support team with whom you are already a customer.
Take the caller's information down and immediately report it to your local authorities.
Never provide your credit card or financial information to someone claiming to be from Microsoft tech support.
What to do if you already gave information to a tech support person
If you think that you might have downloaded malware from a phone tech support scam website or allowed a cybercriminal to access your computer, take these steps:
Change your computer's password, change the password on your main email account, and change the password for any financial accounts, especially your bank and credit card.
Scan your computer with the Microsoft Safety Scanner to find out if you have malware installed on your computer.
Install Microsoft Security Essentials. (Microsoft Security Essentials is a free program. If someone calls you to install this product and then charge you for it, this is also a scam.)
Note: In Windows 8, Windows Defender replaces Microsoft Security Essentials. Windows Defender runs in the background and notifies you when you need to take specific action. However, you can use it anytime to scan for malware if your computer isn’t working properly or you clicked a suspicious link online or in an email message.
Learn more about Windows Defender
Will Microsoft ever call me?
There are some cases where Microsoft will work with your Internet service provider and call you to fix a malware-infected computer—such as during the recent cleanup effort begun in our botnet takedown actions. These calls will be made by someone with whom you can verify you already are a customer. You will never receive a legitimate call from Microsoft or our partners to charge you for computer fixes.
For more information about how to recognize a phishing scam, see Avoid scams that use the Microsoft name fraudulently.
If you need help with a virus or other security problem, visit the Microsoft Virus and Security Solution Center.
To help protect against viruses and other malicious software, download Microsoft Security Essentials.
Windows 8 includes antivirus protection that’s turned on by default.