- The crooks use a legitimate website to publish their malicious phone numbers “Tech Support”
- This is called the injection of research parameters or the reflected input vulnerability
- The attackers modify the legitimate URLs with doubtful details
The false technological support scammers inject false telephone numbers into legitimate websites, large companies like Apple, Paypal and Netflix assigned by a threat emerging type that could endanger customers, have warned the experts.
The scam is particularly misleading, as it bypass the usual security checks that wise Internet users can do such as the web address verification, but inject malicious phone numbers on official sites.
Online advertising spaces are at the origin of the attack vector, the crooks buying Google announcements to pretend to be major brands.
Watch out for these false technological support lines
Click on the advertisement can lead to the official website, but the crooks use malicious URL settings to modify the content displayed on the site – such as the display of false phone numbers in support sections. Because the browser shows the legitimate domain, users are less likely to be suspect.
Malwarebytes researchers describe the attack as an attack on research parameters – or a reflected input vulnerability.
“Once the number is called, the crooks will present themselves as the brand in order to have their victim put back personal data or card details, or even allow remote access to their computer,” explain the researchers.
The other affected sites include HP, Microsoft, Facebook and the Bank of America.
Malwarebytes urges users to be tired of the false technological support lines by checking whether the phone number is integrated into the URL (in this case, it is almost certainly malicious), in search of unusual and high pressure terms as “ call now, “ Anning the url for encodus characters like “ `% 20 ” (space) and` “) And exercise a encody precursation if the search results are displayed before they have a research time.
Users can also access the website high level of the website (for example, www.apple.com) and find their own way of supporting, rather than trusting advertisements – companies generally do not buy online advertisements to sell technological support.
