We received an email alert from Dell on May 10th that there was a data breach. Are you tired of reading about data breaches yet? We do a significant amount of business with Dell as we frequently purchase computers for clients that want to shop for a new or refurbished computer. We will make a computer purchase, install software and other programs, proceed to deliver the computer with the client reimbursing us upon delivery and setup. The subject line in the email read: important message from Dell and it came from a legitimate email address: communications@dell.com.
Dell suffered a security breach in May that hit 49 million customers. Dell announced in the email that they were investigating an incident involving a portal which contained a database of customer information related to purchases from Dell. The accessed information included: Name, physical address, Dell hardware, order information such as dates of order and warranty information. Thankfully, Dell claims that the database did not include financial or payment information, email addresses, telephone numbers or any sensitive customer information.
Dell notified law enforcement and are now engaged with a third-party forensics firm investigating the incident. At the end of the email, Dell warned that we will need to be suspicious of tech support phone scams. If we notice suspicious activity in our Dell account, we were instructed to immediately report concerns to security@dell.com.
This month we will revisit tech support scams. Tech support scams were by far the most often reported category of fraud against people aged 60 and older last year. Tech support scammers utilize text messages, pop-up warnings, emails and robocalls to reach vast numbers of people. They might say they are from a big company: Norton, Apple, Microsoft, Dell. Scammers will tell targets that their security software has expired. Other scammers will make false claims that child pornography has been implanted on a computer. Scammers generate fear, luring victims into immediate action.
Criminals impersonate technology, banking, and government officials in an attempt to convince victims that foreign hackers have infiltrated their bank accounts or personal devices. They will instruct victims to move their money to a new account to protect their savings. These new accounts are controlled by scammers. Why are these scams increasing? In simple terms, they work! Tech support scammers attack hundreds of thousands of people around the world. If just a few of those people fall for the scam, it can mean a high return on investment for the scammers.
We recently had a client reach out about an email from McAfee. She was certain that she used McAfee antivirus protection – she does not. Unfortunately, we find that a significant number of clients do not know which antivirus protection program is installed on their computer. Fake McAfee subscription renewal emails are rampant. Scammers asked our client to pay a one-year renewal fee of $349. She was tempted to pay but checked with us first to determine if her renewal was due. These fake renewal notices and invoices look legitimate and include customer support phone numbers to call. Sophisticated call centers posing as McAfee customer service agents are set up and ready to exploit victims. Over 12,000 people a month fall prey to this McAfee scam. The true scope is likely larger due to underreporting.
Also look for the McAfee “Safety Warning” pop up scam. This scam includes a warning that your device has been infected with viruses or a warning that hackers are attempting to steal your personal data. These warnings may assert that your data has been added to a government cybersecurity blacklist. The scammers urge you to click on a “repair” or a “Remove virus” link to start your “McAfee Total Protection” program. The warning is to respond immediately, which is needed to eliminate the threat. Do not click on links, it is a scam.
The Bottom Line: Individuals claiming to work for Dell are going to make unsolicited calls to customers and insist there is a technical problem with their Dell product. They will attempt to defraud customers by pressuring them to pay to fix the issue. If any unsolicited caller pressures you to act quickly in a threatening or aggressive manner, be advised, it is a scam. Never agree to give control of your computer to any unsolicited caller, no matter how convincing they may sound. Do not be afraid to hang up. You initiate all calls to a security professional.
In closing, SunPass is warning of phishing scams targeting the general public. The scam uses text messages requesting prompt payment to avoid fees. The message contains a link to a fraudulent website with an attempt to collect information. SunPass does not ask customers via text to make a payment.
As a follow up with our AT&T data breach article in April, fake AT&T email messages are on the rise. We have received several bogus AT&T emails notifying us of the data breach. The bogus emails include the words “AT&T security incident” in the header but they are malicious. The emails suggest to the reader: “In order to determine if your personal information was affected, we encourage you to follow the link below to log into your account.” It is a fraudulent link. DO NOT click on links sent in an email or a text message.
Join us next month when we discuss the FTC and their warnings about impersonators.
Two Techs – your locally owned computer support company. Find Two Techs on the web at www.twotechs.com or email us at: support-at-twotechs.com or call 352-200-2365. USF, MIS, MCP, A+, Network+ & CISSP
(References used Dell, Forbes, FBI, McAfee, Dell, TampaBayTimes, SunPass)
Thanks for finally talking about > Tech support scams – Two Techs < Liked it!