This Might be a Ransomware Trap

Does your employees know that no one from “Microsoft Teams support” would call them? If not, then let your team know right away. This new type of ransomware isn’t just tricking people into thinking that they’re being contacted by a legitimate company. What is worse, is that it is impersonating IT support, cyber security firms warn. 

Cyber Security Firms Advise to Watch Out for “Support Call”

Cyber Security Firms Advise to Watch Out for “Support Call”

Cyber Security Firms Explain How The Scam Works

Reports say that clients are being conned into letting scammers gain control of devices. This is done by posing as help desk staff from a reputable company. This then creates the opportunity for a ransomware attack, in which your business data is encrypted and held for ransom. 

Here’s are some ways that these threat actors operate:

Flooded Inboxes

First, these scammers flood an employee’s mail. Hence, resulting in being unworkable for use or causing a bacterial or viral outbreak in an office.

Fake Help Desk Calls

Next, because there is a tech issue, they pose as an IT support representative. They may then proceed to advise that they are there to solve the issue reported to them. 

Remote Access Tools

Lastly, because they have already built their credentials of being tech support, they now ask the employee to install software. This can be any remote access tool such as AnyDesk or Quick Assist. Once in the network, these hackers can openly mine credentials and data and launch a ransomware attack to lock down the systems. 

A New Twist: Fake Teams Accounts

Cyber security firms warn that this scam is not just limited to cold-call methods of operation. It is because these hackers also create fake Teams accounts. While doing so, they use names such as Help Desk and domains like securtiyadminhelper.on or microsoft.com. Using these accounts, they send direct messages saying they need access to the devices. 

The Cost of a Ransomware Attack

Needless to say, this ransomware attack can negatively impact a business in several and different ways. First, it leads to the loss of important and confidential data. This then leads to a disruption of important processes and can, possibly, bring operations to a halt. Second, the attack can also lead to disruption to business processes and customer relations. Hence, forcing everything to come to a standstill. Cyber security firms also explain that financially, the costs associated with paying the ransom and recovering from the attack can be staggering. These are often very high amounts that can drive a business to bankruptcy. Additionally, an attack can cause catastrophic reputation damage. This leads to customers losing their trust and confidence in the business that leads to customers avoiding the company instead. Lastly, legal issues can arise if sensitive data is leaked. This thereby results in lawsuits which creates more financial and reputational harm. 

How to Stay Protected

In other words, it is essential to inform your team about these scams. Cyber security firms emphasize that employees should:

Verify Calls and Messages

Always confirm with your actual IT department or managed IT and cybersecurity service provider. Do not entertain any request like this without a go signal from your team.

Question Access Requests

Take caution when downloading anything on the device. This goes the same for giving applications more permissions to access the device. Always ask if it is necessary and if there are other ways it can be done.

Spot Fake Accounts

You and your team must know what to look for in certain accounts. Make sure to pay attention to sections of usernames and aspects of domains. 

For Microsoft Teams Users:

For those who use Microsoft Teams, it is important to restrict external access. This can be done by only allowing chats with message senders who are using verified domains. By doing so, you ensure that the communication environment within the platform is secured. Additionally, enabling chat logging is crucial for maintaining a paper trail of all interactions. This is necessary for security audits and ensuring accountability. 

Legitimate Cyber security Firms Can Help Secure Your Business

Early preventive measures can help spare your business from expensive attacks. Here at EB Solution, we can help you set all of these. If you are unsure on how to safely set up your apps or are suspecting a breach, we are here to assist. 

Book your consultation today!

Watch Our Latest Tech Videos From EB Solution

Call Now