This is similar in nature to the Mac phishing scam I posted about earlier but this goes a step further in that it does not rely on a browser to implement the scam:
viewtopic.php?t=22768
Microsoft has issued a warning about a new tech-support scam in which cybercriminals misuse the Quick Assist tool to gain control of victims’ computers.
Quick Assist, a built-in Windows feature, allows users to remotely connect for assistance. However, scammers are now impersonating support staff from major tech companies, such as Microsoft or Google, via phone calls or emails. They trick victims into granting them access under the guise of fixing an urgent issue. Instead of helping, they install malware that gives them full control over the device.
This marks the first known instance of fraudsters exploiting Quick Assist directly, having previously relied on third-party remote-access software like TeamViewer and AnyDesk.
To counter this growing threat, Microsoft has implemented new security warnings whenever Quick Assist is used to establish a remote connection. Users will now be required to tick a box before clicking Allow to proceed.
This scam is one of nine AI-driven cyberattacks recently identified by Microsoft.
I wonder though, is asking users to tick a box before allowing a remote connection really going to help? Surely if scammers can already leverage the Quick Assist tool it won't be long before they can also take control of the security warning![🤔]()
viewtopic.php?t=22768
Microsoft has issued a warning about a new tech-support scam in which cybercriminals misuse the Quick Assist tool to gain control of victims’ computers.
Quick Assist, a built-in Windows feature, allows users to remotely connect for assistance. However, scammers are now impersonating support staff from major tech companies, such as Microsoft or Google, via phone calls or emails. They trick victims into granting them access under the guise of fixing an urgent issue. Instead of helping, they install malware that gives them full control over the device.
This marks the first known instance of fraudsters exploiting Quick Assist directly, having previously relied on third-party remote-access software like TeamViewer and AnyDesk.
To counter this growing threat, Microsoft has implemented new security warnings whenever Quick Assist is used to establish a remote connection. Users will now be required to tick a box before clicking Allow to proceed.
This scam is one of nine AI-driven cyberattacks recently identified by Microsoft.
I wonder though, is asking users to tick a box before allowing a remote connection really going to help? Surely if scammers can already leverage the Quick Assist tool it won't be long before they can also take control of the security warning
Statistics: Posted by Saul — Wed May 14, 2025 9:28 am