The University of Alabama

Page Content   Main Links   Utility Links   Search   Footer

Office of Information Technology

The University of Alabama

Page Content   Main Links   Utility Links   Search   Footer

Office of Information Technology

Home > Technology News > Microsoft Tech Support Phone Social Engineer Attempt

Microsoft Tech Support Phone Social Engineer Attempt

April 19, 2012 – ISSUE:  OIT received a question concerning an old fashion phone social engineering attempt.  Social engineering is an old technique that usually involved a phone call to capture information rather than what we see today via email and call “phishing” attacks.

One of our doctors in the Medical Center received a call  where the caller was claiming to be from Microsoft Tech Support.   The caller indicated MS Tech Support had received information that his computer was significantly infected. They were there to help. If he was close to his computer they could direct him on what was needed to be done to clean his computer.

WHAT SHOULD YOU DO?

If you receive a suspicious call like this, ask for a name and phone number which will usually cause them to hang up.  That was the case with this call.  Tell them you want their contact information for your technical support team to work directly with them to resolve the problem.  Do not give them any access to your machine, nor provide them with any login credentials.  In some cases they may be using you to gain further information about a possible different target.  If you do receive a call like this, please send Ashley Ewing ( ashley.ewing@ua.edu) the details in an email.

HOW CAN I TELL THIS IS A FAKE?

Some social engineer attempts are easy to detect, others are not.

Microsoft Technical Support will never contact you directly on a cold call.

Always be suspicious of an unexpected cold phone call asking for access to your machine or to your login credentials.   You can always take a name and number, plus a ticket number if available from the individual calling, then call the service desk (348-5555), or your local support organization to verify the individual and make sure they do have a ticket to work on your machine.

Remember, Microsoft Technical Support will never call you directly in an unsolicited manner.

Comments are closed.

Security Alerts

February 20th, 2015: OIT is aware of an email based virus infection that seems to be spreading and changing through embedded executables in zip file attachments.  We are working on Read More about

February 10th, 2015: You may have received the email titled: “Document Important. ” (image below) This message contains a malicious attachment labeled: [ doc9218_pdf.zip\doc9218_pdf.scr ]. In most situations, Read More about

January 15th, 2015: Employees beware as there are phishing scams that are trying to steal your pay check through emails. Click here for additional information on how to avoid this Read More about

Scheduled Outages

May 19th, 2015- On Saturday, May 30, the myBama portal will be down for systems work from 8AM to 12PM. If you have any issues after noon on Saturday, please Read More about

April 9th, 2015- ORACLE PATCH TO BE INSTALLED APR. 19 — The Office of Information Technology announces that the quarterly Oracle patch will be installed Sunday, Apr. 19, from 8 Read More about

March 24th, 2015- The Office of Information Technology will implement a Banner Bundle Upgrade to Production on Sunday, March 29th during the normal maintenance window. During the upgrade, myBama will Read More about

Known Issues

The Known Issues Page is a checkpoint for our IT partners across campus. The page lists software compatibility issues and known fixes.

Utility Links

Text Only Options

Top of page


Text Only Options

Open the original version of this page.

Usablenet Assistive is a UsableNet product. Usablenet Assistive Main Page.