Microsoft has officially launched a new ‘Scareware blocker’ feature designed to enhance user protection on Edge web browsers for Windows PCs. This innovative machine learning threat detection software, unveiled at the 2024 Ignite conference, identifies the telltale signs of scareware in real-time, empowering users to regain control over their devices. As the landscape of online scams continues to evolve, this technology holds the potential to significantly reduce the prevalence of tech support scams.
Millions lost every year
The FBI estimates that tech support scams cost victims millions annually, making it a prominent issue in the realm of cybercrime. Typically, these scams involve cybercriminals deploying pop-ups or ads that mislead users into believing their devices are infected with malware. These deceptive alerts often flood the screen with alarming banners, prompting users to seek out ‘tech support’ from fraudulent agents.
Once users are ensnared in the scam, fake support representatives may request sensitive personal and financial information, exploiting the victim’s fear of a compromised device. While many individuals are aware of these tactics and can dismiss them confidently, older adults and less tech-savvy users remain prime targets for such schemes.
The introduction of the ‘scareware blocker’ could enhance safety for all users. This AI-driven detection system scrutinizes new and unfamiliar websites—areas where abuse is more likely to occur—and employs a SmartScreen feature to provide global protection within minutes of identifying a malicious site.
The model operates by comparing screens to a database of sample scams provided by the security community, processing this information locally without the need to upload images to the cloud. When a potential attack is detected, Edge takes proactive measures by exiting full-screen mode, halting aggressive audio playback, and alerting the user with a thumbnail of the suspicious page. Users are then given the option to report the malicious site, contributing to the broader effort to safeguard others. In cases of false alarms, users can also report inaccuracies to refine the model further.
While Microsoft acknowledges that the scareware blocker may not capture every scam—especially as tactics continue to evolve—the company remains dedicated to empowering users with effective solutions as they enhance their defenses. This tool mirrors features already utilized by Chrome and becomes accessible to any Edge user upon updating their browser to the latest version.
Protecting yourself
For those who do not use Microsoft Edge or wish to bolster their online safety further, several proactive measures can be taken. Awareness of the scam’s mechanics is crucial; understanding the playbook can significantly reduce panic when encountering such threats. Maintaining composure and resisting the urge to provide personal information under pressure is essential.
In the event of a warning overtaking the screen, users can press and hold the ‘Esc’ key to escape, alleviating some anxiety. Scammers thrive on urgency, so taking a moment to think can greatly enhance your ability to avoid falling victim to these schemes.
It is advisable to refrain from clicking on suspicious links or pop-ups, as these are often designed to harvest personal information, potentially leading to identity theft. Additionally, avoid contacting any phone numbers or emails presented in pop-ups; if a legitimate issue arises, seek out contact information through official channels instead. Be particularly cautious about granting access to accounts, and remember that reputable tech companies rarely request payments via foreign accounts, gift cards, or cryptocurrency.
Utilizing effective ad blockers can significantly mitigate the risk posed by pop-up ads, with many options available for free. Furthermore, having reliable antivirus software installed on your device can instill confidence in your online safety, making you less susceptible to panic-driven decisions. As Pierre Noel, Field CISO EMEA at Expel, advises, “If you have a reputable antivirus installed, simply ignore any pop-ups urging you to install security fixes.” In the case of unexpected tech support calls, it’s wise to express busyness and ask for the caller’s name and department—chances are, they will promptly hang up.
