home.social

#supportscam — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #supportscam, aggregated by home.social.

  1. Pixelcats⁷ @[email protected] ·

    Headsup Apo-Peeps - there's a new round of Moderation scam popping up today. If you see a message that looks something like this, please don't click on any links. DO report the account and then block.

    Your account would never be reviewed in this way, and we would never ask you to verify by clicking on a random link.

    Keep safe out there! 💜

    #Mastodon #SupportScam

    #mastodon #supportscam
  2. Infoblox Threat Intel @[email protected] ·

    Fake support scammers, regardless of the initial ruse, typically trick victims into installing remote access tools, often describing it as a security or verification check.

    Many use ConnectWise ScreenConnect, a legitimate tool, hosted on their own domains. They may even jazz things up with custom branding, sometimes changing the brand during the lifetime of the domain, though they really need to avoid heavily compressed images - that fake Apple support site looks janky!

    Helpfully these scammers seem to follow a standard process for the DNS, allowing us to identify their consistencies:

    - Registration through NameSilo
    - Protection provided by Cloudflare
    - Alphanumeric RDGA domains favouring TLDs '.cfd', '.sbs', '.top' and '.xyz'*
    - Keyword RDGA domains, using words like 'care', 'help' and 'support', with TLDs '.help', '.live' and '.online'

    Recent examples:
    - 'cmonline[.]help'
    - 'jxcr-ui1[.]top'
    - 'jdsfrw-11[.]top'
    - 'ntfre-8e[.]xyz'
    - 'wlop10[.]top'

    * We're working with our friends at XYZ.com to take down offending domains using TLDs under their control.

    #cybercrime #cybersecurity #dns #infoblox #infobloxthreatintel #infosec #scam #supportscam #threatintel #threatintelligence

    #cybercrime #cybersecurity #dns #infoblox #infobloxthreatintel #infosec
  3. Tarnkappe.info @[email protected] ·

    📬 Support-Scam: Vortäuschung von Infektion mit Computervirus
    #ITSicherheit #OnlineBetrug #Computervirus #Oldenburg #PopupFenster #RemoteZugriff #SupportScam #TaskforceCybercrime #Westerstede tarnkappe.info/artikel/it-sich

    #itsicherheit #onlinebetrug #computervirus #oldenburg #popupfenster #remotezugriff
  4. proedie @[email protected] ·

    Those #supportscam scam guys are really something. I told "Jannet" that I don't even own even own a Windows computer. She refused to believe me, because _everybody_ has one, right?

    In the end she threatend me to block my computer license number so I will be unable to use any Microsoft product in the future. 🙄🤣

    #supportscam