Book a call with Olly or give us a call on 01753 336226

Beware that Microsoft support call

Olly Denhard
Olly Denhard
Founder, IT Trouble Free

Beware that “Microsoft support call” – it could be a ransomware scam

If you get a call claiming to be from Microsoft Teams support, think twice before doing what they ask. 

Why? Because there’s a new trend for scammers to pose as “help desk” staff. They aim to trick employees into letting them take over their devices. 

This is part of a larger ransomware attack, where you’ll be denied access to your business data unless you make a hefty payment to get it back.

Recently, a notorious cyber crime group has taken this scam to a new level 

First, they’ll flood an employee’s inbox with so much spam that it becomes unusable. Then they swoop in with a phone call, pretending to be from IT support, offering to “fix” the problem.

They may ask your employee to install remote desktop software like AnyDesk or use built-in tools like Windows Quick Assist. Once they have access, they can move around your network, collect sensitive data, and launch ransomware on your devices.

Be warned – they don’t only reach out over the phone. They’ve also started setting up Teams accounts to make employees think they’re part of IT support. 

They do this by choosing usernames like “Help Desk” and using fake Microsoft tenant domains such as “securityadminhelper.onmicrosoft .com”. Then they send one-to-one messages to employees, saying they need access to their device.

Ransomware attacks are serious business

Along with locking you out of your data, they can also shut down your operations, disrupt customer service, and potentially leak confidential information. 

Recovering from a ransomware attack can be expensive, both in terms of paying the ransom … but also when dealing with the aftermath. It can cause a loss of revenue, damage your reputation, and it could even have legal consequences.

Make your team aware of this scam 

Encourage everyone to be cautious about any unsolicited support calls or Teams chats. 

Also, check that everyone knows to contact your actual IT department first if someone asks to install software or gain access. 

Remember, too, that if you use Microsoft Teams in your business, make sure it’s set up securely. Only allow external chats from trusted domains, and make sure chat logging is enabled. 

If you want extra help safeguarding your setup, we can help.

Would you like to talk about how to protect yourself against cybercrime or any other IT security concerns? Why not give us a call?