Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Scam Of The Week: Tech Support Exploits WannaCry Ransomware Fears

    WannaCry Decrypt0r 2.0

    We all know about the infamous WannaCry ransomworm which caused a worldwide 1 billion dollars in damage, targeting mainly un-patched Windows 7 machines. As expected, the bad guys are now exploiting the mass media coverage and have come up with tech support scams that use the fears of people about getting infected with WannaCry.

    We also know that Eastern European organized cyber crime is using the UK as their beta test site before they unleash their attacks on America. So here is your heads-up, this may very well happen to machines in your office the coming few weeks.

    The UK's cybercrime center called Action Fraud recently released a warning regarding scams that concern WannaCry.

    The bad guys use a pop-up window that appears from nowhere, refuses to close, and looks like a message claiming to be from Microsoft. It will say that the user's workstation has been infected with WannaCry, and they are prompted to call the number flashed on the screen.

    After the user calls the number they are urged to give the scammer remote access to the machine. Once granted, these scam artists run the Windows Malicious Software Removal tool - which anyone can download for free from Microsoft -, and then demand a whopping £320 (roughly $415) as payment.

    I suggest you send the following to your employees, friends, and family. You're welcome to copy, paste, and/or edit:

    Bad guys are now trying to trick computer users into believing they are infected with the WannaCry ransomware. A popup arrives on your screen from nowhere, and you cannot get rid of it. They popup claims it is from Microsoft and that your computer is infected and that you need to call tech support.
    But when you call the number you get a scammer on the phone who will try to charge you 400 dollars to run a Microsoft malicious software removal tool that anyone can download for free.  Remember that Microsoft’s error and warning messages on your PC will never include a phone number. Also, Microsoft will never proactively reach out to you to provide unsolicited PC or technical support. Any communication they have with you must be initiated by you.

    Let's stay safe out there.

    Warm regards,

    Stu Sjouwerman

    Founder and CEO, KnowBe4, Inc.

     NewStu.png

    PS: If you are not a KnowBe4 customer yet, send a (free) Phishing Security Test to your users, and find out what the Phish-prone percentage of your employees is.  Often a very effective way to get IT security budget for new-school security awareness training.

    Get Your Free Phishing Security Test

    Don't like to click on buttons with redirects? Cut and paste this link in your browser:

    https://info.knowbe4.com/phishing-security-test-16

    Related Pages: Phishing

     

     

    Return To KnowBe4 Security Blog

    Topics: Ransomware

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews