Key Takeaways:
- Cybercriminals are leveraging AI to carry out increasingly sophisticated tech support scams.
- Hackers often use the Quick Assist app to gain unauthorized access to devices.
- Microsoft has warned users to be cautious when using Quick Assist.
Microsoft has recently issued an alert to warn users about the growing misuse of its Quick Assist app on Windows and Mac devices. The Microsoft Security team detailed that cybercriminals are now harnessing AI to launch sophisticated attacks aimed at stealing sensitive information and credentials.
The Quick Assist app allows users to remotely connect to another person’s computer to provide technical support. It offers screen sharing, control options, and communication tools such as laser pointer and chat. Quick Assist ensures secure connections by requiring a 6 digit code for access.
How Quick Assist is being exploited by cybercriminals
Microsoft warns that AI-powered cyberattacks are becoming more common and sophisticated. The technology is making it faster and cheaper for criminals to create convincing fake content, like phishing emails. Microsoft mentioned that one growing concern is tech support scams, which are increasingly targeting both Windows and macOS users.
“Tech support scams are a type of fraud where scammers trick victims into unnecessary technical support services to fix a device or software problems that don’t exist. The scammers may then gain remote access to a computer—which lets them access all information stored on it, and on any network connected to it or install malware that gives them access to the computer and sensitive data,” the Microsoft Security team explained.
The FBI has warned that unsolicited tech support calls are mostly scams. Scammers often pose as representatives from trusted companies like Microsoft or Google, who claim there’s an issue with the user’s device. Both companies have confirmed they never make support calls without a prior request.
Microsoft has introduced several security measures to make its products and services “Fraud-resistant by Design.” As part of this effort, Microsoft rolled out a new policy in January that allows product teams to build fraud prevention features directly into the design process. “Quick Assist and Microsoft are not compromised in these cyberattack scenarios; however, the abuse of legitimate software presents risk Microsoft is focused on mitigating,” the Microsoft Security team added.
Best practices for enterprise customers to avoid scams
To help prevent tech support scams, Microsoft has shared a few key recommendations for enterprise customers. The company advises using Remote Help for internal tech support, as it offers enhanced security features. Remote Help is designed to work only within an organization’s own network, and it creates a safer environment for providing tech support.
Additionally, Quick Assist now includes warnings that require users to acknowledge the security risks of sharing their screen. This step adds a layer of protection to help prevent accidental or unauthorized requests for full control on the target device.