Warning about "fake" Microsoft calls   [10.09.21]

End users are warned against alleged calls from Microsoft. End users are warned.

This scam has been known for a long time, but unfortunately it still often falls on open ears.
Fraudsters pretend to be Microsoft employees on the phone (or via e-mail), want to direct users to websites where they are supposed to enter their data, ask them to execute certain commands on the computer so that they can take control or load malicious code, or offer to repair the terminal device.

These scams, known as "tech support scams", are used for the sole purpose of harvesting personal data or for malicious code reloading.

By its own admission, Microsoft does not, under any circumstances, make unsolicited phone calls offering to repair a defective device or install third-party software to repair damage. Microsoft NEVER solicits personal or financial information via phone calls.

If you receive such a call,

  • end such a call as soon as possible,
  • do not purchase or install any third-party software on your terminal,
  • do not be irritated by threats that the callers will:delete your Windows version if you do not install the program,
  • never give remote access to your end device during such a call,
  • do not respond to supposed warnings that appear on your browser screen or emails and do not download any attachments, and
  • do not disclose your private or personal data under any circumstances.

If you have already spoken to a supposed support employee and let him/her work on your PC, it is possible that malware has been installed on your computer. In this case, disconnect your PC from the Internet and contact IT Security immediately. Then change all passwords and access data - especially your access to e-mail accounts, PC logins or other business access, but also to online banking and online stores, if these have been discussed.

Further information and background can be found here, for example (in German):

Evaluation

Tech support scams like the incidents described above can lead to your personal devices or user accounts being compromised and attackers gaining access to additional systems. Therefore, you should take this scam seriously, always react suspiciously to such calls and be sensitive with personal information.

In this context, reference should be made to the awareness learning modules on IT security.

If you have any questions, please contact itsec@uni-hohenheim.de.


Back to All news


Do you have questions or comments about this site? contact form