(An Autonomous Body Recognized by Ministry of Commerce & Industry, Government of India)
Competency based placement focussed Education I Training I Research I Consultancy
Microsoft Impersonation Scam Uses Fake Support Alerts to Steal Credentials
A new phishing campaign is exploiting Microsoft’s trusted branding to trick users into tech support scams. The scheme begins with emails that appear legitimate, featuring Microsoft’s logo and claims of urgent financial or security issues. Recipients are urged to click a link to verify their identity. The link leads to a fake CAPTCHA page, followed by a series of deceptive pop-ups resembling genuine Microsoft alerts that appear to lock the browser. Victims are then shown a fake support number, connecting them to scammers posing as Microsoft technicians. Under the guise of fixing the problem, these criminals request login credentials or instruct users to install remote access software, granting full control of the victim’s device. Analysts from Cofense report that attackers have refined their tactics, combining payment lures and UI manipulation to heighten credibility and panic, ultimately leading to credential theft and system compromise.
21-10-2025
📰 Recent News
- Microsoft Impersonation Scam Uses Fake Support Alerts to Steal Credentials
- Windows Rust Kernel Bug Causes System Crashes Despite Memory Safety
- TikTok Malware Campaign Tricks Users with Fake Software Activations
- Operation Zero Disco: Cisco SNMP Flaw Exploited to Install Linux Rootkits
- EtherHiding Used by North Korean Group to Deliver Modular Malware