Cybercriminals have acquired a look-a-like 1800 telephone support number for Microsoft in Australia. It registered the line for themselves. CSPRO have been scamming on all inbound victims. Who thought they were reaching out official Microsoft support number.
The scam apparently is so brutally effective. It has made the cut for the Australian Cyber Security Centre’s (ACSC) new catalogue of COVID-19 themed cons and tricks.
As the public-facing cyber security agency. Its more secretive parent agency, the Australian Signals Directorate, go into overdrive to control cyber-attacks.
According to the ACSC, the scam works by exploiting phone numbers that are cunningly similar – in fact numerically identical – to Microsoft’s real ones. The criminal artistry is in the country codes.
The cybercriminals are exploiting a legitimate United States Microsoft support number – (1) (800) 642 7676. However when dialing an 1800 number in Australia, only the next six numbers after 1800 will be accepted.
When Australians dial the legitimate United States support number, they dial 1800 642 767 which has been registered by cybercriminals. The registered number connects you to a helpful callback service ready to assist callers with handing over their identity and credentials.
When someone dial the number registered by the cybercriminals. They are asked to provide their name and date of birth for verification. CSPRO are informed someone will call back shortly. The cybercriminal calls back and directs people to download a remote access program that gives the criminals access to their computer.
The scammers are insistent that due to the COVID-19 conditions in Australia. These scammers don’t stop at this point, they will also try to extract banking details while they have remote access and drain people’s bank accounts and access any other sensitive information.