{"id":75543,"date":"2017-08-07T06:00:01","date_gmt":"2017-08-07T13:00:01","guid":{"rendered":"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/?p=75543"},"modified":"2023-05-15T23:04:43","modified_gmt":"2023-05-16T06:04:43","slug":"links-in-phishing-like-emails-lead-to-tech-support-scam","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/","title":{"rendered":"Links in phishing-like emails lead to tech support scam"},"content":{"rendered":"<table style=\"width: 40%; float: right; margin-left: 20px;\">\n<tbody>\n<tr>\n<td style=\"padding: 20px; background-color: #f5f5f5;\"><em>Modern social engineering attacks use non-portable executable (PE) files like malicious scripts and macro-laced documents. Every month, Windows Defender AV detects non-PE threats on over 10 million machines.<\/em><\/p>\n<p><em>Learn how machine learning drives next-gen protection capabilities and cloud-based, real-time blocking of new and unknown threats:<\/em><\/p>\n<p><em><a href=\"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/2018\/06\/07\/machine-learning-vs-social-engineering\/\" rel=\"noopener\"><strong>Machine learning vs. social engineering<\/strong><\/a><\/em><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><i><span style=\"font-family: Segoe UI;\">(Note: Our <a href=\"https:\/\/www.microsoft.com\/en-us\/wdsi\/threats\/support-scams\" target=\"_blank\" rel=\"noopener\">Tech support scams FAQ<\/a> page has the latest info on this type of threat, including scammer tactics, fake error messages, and the latest scammer hotlines. You can also read our latest blog, <a href=\"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/2018\/04\/20\/teaming-up-in-the-war-on-tech-support-scams\/\" target=\"_blank\" rel=\"noopener\"><strong>Teaming up in the war on tech support scams.<\/strong><\/a>)<\/span><\/i><\/p>\n<p>Tech support scams continue to evolve, with scammers exploring more ways to reach potential victims. Recently, we have observed spam campaigns distributing links that lead to <a href=\"https:\/\/www.microsoft.com\/en-us\/wdsi\/threats\/support-scams\">tech support scam<\/a> websites.<\/p>\n<p>Anti-spam filters in <a href=\"https:\/\/products.office.com\/en-us\/exchange\/exchange-email-security-spam-protection\">Microsoft Exchange Online Protection (EOP) for Office 365<\/a> and in Outlook.com blocked the said emails because they bore characteristics of phishing emails. The said spam emails use social engineering techniques\u2014spoofing brands, pretending to be legitimate communications, disguising malicious URLs\u2014employed by phishers to get recipients to click suspicious links.<\/p>\n<p>However, instead of pointing to phishing sites designed to steal credentials, the links lead to tech support scam websites, which use various scare tactics to trick users into calling hotlines and paying for unnecessary &#8220;technical support services&#8221; that supposedly fix contrived device, platform, or software problems.<\/p>\n<p>The use of email as an infection vector adds another facet to tech support scams, which are very widespread. Every month, at least <a href=\"https:\/\/blogs.technet.microsoft.com\/mmpc\/2017\/04\/03\/tech-support-scams-persist-with-increasingly-crafty-techniques\/\" target=\"_blank\" rel=\"noopener\">three million users<\/a> of various platforms and software encounter tech support scams. However, tech support scams are not typical email threats:<\/p>\n<ul>\n<li>Many of these scams start with malicious ads found in dubious web pages\u2014mostly download locations for fake installers and pirated media\u2014that automatically redirect visitors to <a href=\"https:\/\/blogs.technet.microsoft.com\/mmpc\/2017\/04\/03\/tech-support-scams-persist-with-increasingly-crafty-techniques\/\">tech support scam sites<\/a> where potential victims are tricked into calling hotlines.<\/li>\n<li>Some tech support scams are carried out with the help of malware like <a href=\"https:\/\/blogs.technet.microsoft.com\/mmpc\/2016\/10\/21\/beware-of-hicurdismos-its-a-fake-microsoft-security-essentials-installer-that-can-lead-to-a-support-call-scam\/\">Hicurdismos<\/a>, which displays a fake BSOD screen, or <a href=\"https:\/\/www.microsoft.com\/security\/portal\/threat\/encyclopedia\/Entry.aspx?Name=SupportScam:Win32\/Monitnev.A\">Monitnev<\/a>, which monitors event logs and displays fake error notifications every time an application crashes.<\/li>\n<li>Still other tech support scams use <a href=\"https:\/\/www.microsoft.com\/en-us\/safety\/online-privacy\/avoid-phone-scams.aspx\">cold calls<\/a>. Scammers call potential victims and pretend to be from a software company. The scammers then ask victims to install applications that give them remote access to the victim\u2019s devices. Using remote access, the experienced scam telemarketers can misrepresent normal system output as signs of problems. The scammers then offer fake solutions and ask for payment in the form of a one-time fee or subscription to a purported support service.<\/li>\n<\/ul>\n<p>The recent spam campaigns that spread links to tech support scam websites show that scammers don\u2019t stop looking for ways to perpetrate the scam. While it is unlikely that these cybercriminals will abandon the use of malicious ads, malware, or cold calls, email lets them cast a wider net.<\/p>\n<h2>An alternative infection path for tech support scams<\/h2>\n<p>The spam emails with links to tech support scam pages look like phishing emails. They pretend to be notifications from online retailers or professional social networking sites. The suspicious links are typically hidden in harmless-looking text.<\/p>\n<p>The links in the emails point to websites that serve as redirectors. In the samples we analyzed, the links pointed to the following sites, which are most likely compromised:<\/p>\n<ul>\n<li>hxxp:\/\/love.5[redacted]t.com\/wordpress\/wp-content\/themes\/acoustician.php<\/li>\n<li>hxxp:\/\/s[redacted]t.com\/wp-content\/themes\/paten.php<\/li>\n<li>hxxp:\/\/k[redacted]g.org\/wp-content\/categorize.php<\/li>\n<\/ul>\n<p>Interestingly, the redirector websites contain code that diverts some visitors to pharmaceutical or dating websites.<\/p>\n<p>In most cases, however, the redirector websites eventually lead to typical support scam pages.<\/p>\n<h2>Landing on typical support scam websites<\/h2>\n<p>Tech support scams sites often mimic legitimate sites. They display pop-up messages with fake warnings and customer service hotline numbers. As part of the scam, calls to these phone numbers are answered by agents who trick users into paying for fake technical support.<\/p>\n<p>The technical support scam websites employ various social engineering techniques to compel users to call the provided hotlines. They warn about malware infection, license expiration, and system problems. Some scams sites display countdown timers to create a false sense of urgency, while others play an audio message describing the supposed problem.<\/p>\n<p>Tech support scam websites are also known to use pop-up or dialog loops. A dialog loop refers to malicious code embedded in sites that causes the browser to present an infinite series of browser alerts containing falsified threatening messages. When the user dismisses an alert, the malicious code invokes another one, ad infinitum, essentially locking the browser session.<\/p>\n<p>More advanced <a href=\"https:\/\/blogs.technet.microsoft.com\/mmpc\/2017\/04\/03\/tech-support-scams-persist-with-increasingly-crafty-techniques\/\">tech support scam sites use web elements<\/a> to fake pop-up messages. Some of these scam sites open full screen and <a href=\"https:\/\/blogs.technet.microsoft.com\/mmpc\/2017\/03\/02\/breaking-down-a-notably-sophisticated-tech-support-scam-m-o\/\" target=\"_blank\" rel=\"noopener\">mimic browser windows<\/a>, showing spoofed address bars.<\/p>\n<h2>Windows 10 protects against tech support scams, no matter the vector<\/h2>\n<p>Tech support scams continue to expand and evolve. They are becoming multi-faceted and are arriving via several infection vectors. A multi-layered defense is necessary.<\/p>\n<p><a href=\"https:\/\/www.microsoft.com\/en-us\/windows\/windows-10-upgrade\">Windows 10<\/a> has a comprehensive protection stack that defends against multi-faceted threats. New and updated features in <a href=\"https:\/\/blogs.windows.com\/windowsexperience\/2017\/03\/29\/windows-10-creators-update-coming-april-11-surface-expands-markets\/\">Creators Update<\/a> provide even more protection for devices against the latest and advanced threats. Upgrade to Windows 10, if you haven\u2019t already, and keep your computers <a href=\"https:\/\/www.microsoft.com\/en-us\/security\/portal\/mmpc\/help\/updatefaqs.aspx\">up-to-date<\/a>.<\/p>\n<p>Microsoft Exchange Online Protection (EOP) has built-in anti-spam filtering capabilities that help protect <a href=\"https:\/\/www.office.com\/\">Office 365<\/a> customers from email threats, including tech support scams that arrive via email. <a href=\"https:\/\/products.office.com\/en-us\/exchange\/online-email-threat-protection\">Office 365 Advanced Threat Protection<\/a> helps secure mailboxes against attacks by blocking emails with unsafe attachments and malicious links, including time of click protection. Outlook.com anti-spam filters also provide protection against these scam emails.<\/p>\n<p>Use <a href=\"https:\/\/technet.microsoft.com\/itpro\/microsoft-edge\/index\">Microsoft Edge<\/a> when browsing the Internet. It uses <a href=\"https:\/\/blogs.windows.com\/msedgedev\/2015\/12\/16\/smartscreen-drive-by-improvements\/\">Windows Defender SmartScreen<\/a> (also used by Internet Explorer), which blocks tech support scam websites and other malicious websites, as well as malicious downloads.<\/p>\n<p>Microsoft Edge also helps stop pop-up or dialog loops that are often spawned by tech support scam websites. It does this by allowing you to stop web pages from creating any more messages when the first one is dismissed<\/p>\n<p>When a website serves a dialog loop, you can also try to close the browser window. Alternatively, you can open Task Manager (by pressing CTRL+SHIFT+ESC), select the browser under Apps, and click <em>End task<\/em>. In future updates, Microsoft Edge will let you close the browser or specific tabs even when there is a pop-up or dialog message.<\/p>\n<p>To report a tech support scam site using Microsoft Edge, select <em>More [\u2026] <\/em>while you are on the site. Select <em>Send feedback<\/em> &gt; <em>Report unsafe site<\/em>, and then use the web page that opens to report the website. In Internet Explorer, select the gear icon and then select to <em>Safety<\/em> &gt; <em>Report unsafe website<\/em>.<\/p>\n<p><a href=\"https:\/\/technet.microsoft.com\/en-us\/itpro\/windows\/keep-secure\/windows-defender-in-windows-10\">Windows Defender Antivirus<\/a> detects and blocks tech support scam malware and other threats. It leverages protection from the cloud, helping ensure you are protected from the latest threats.<\/p>\n<p>Windows Defender Advanced Threat Protection (<a href=\"https:\/\/www.microsoft.com\/en-us\/windowsforbusiness\/windows-atp?ocid=cx-blog-mmpc\" target=\"_blank\" rel=\"noopener\">Windows Defender ATP<\/a>) also integrates protections from Windows Defender AV, Windows Defender Exploit Guard, and Windows Defender Application Guard, providing a seamless security management experience.<\/p>\n<p>To test how Windows Defender ATP can help your organization detect, investigate, and respond to advanced attacks, <strong><a href=\"https:\/\/www.microsoft.com\/en-us\/windowsforbusiness\/windows-atp?ocid=cx-blog-mmpc\" target=\"_blank\" rel=\"noopener\">sign up for a free trial<\/a><\/strong>.<\/p>\n<p>Tech support scams employ various social engineering techniques to get potential victims to call fake support hotlines. Do <em>not<\/em> call hotline numbers displayed in pop-up messages. Error and warning messages from Microsoft do not contain support numbers.<\/p>\n<p>Some scammers might contact you directly and claim to be from Microsoft. Microsoft will not proactively reach out to you offering unsolicited technical support. To reach our technical support staff, visit the <a href=\"https:\/\/support.microsoft.com\/en-us\/contactus\/\">Microsoft Answer Desk<\/a>.<\/p>\n<p>For more guidance and a comprehensive list of scam numbers to avoid, read about <a href=\"https:\/\/www.microsoft.com\/en-us\/wdsi\/threats\/support-scams\">avoiding technical support scams<\/a> on Windows Defender Security Intelligence.<\/p>\n<p><em>Alden Pornasdoro, Jeong Mun, Barak Shein, Eric Avena<\/em><\/p>\n<hr \/>\n<h3>Talk to us<\/h3>\n<p>Questions, concerns, or insights on this story? Join discussions at the\u00a0<a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Windows-Defender-Advanced-Threat\/ct-p\/WindowsDefenderAdvanced\">Microsoft Defender ATP community<\/a>.<\/p>\n<p>Follow us on Twitter <a href=\"https:\/\/twitter.com\/MsftSecIntel\" target=\"_blank\" rel=\"noopener\"><strong>@MsftSecIntel<\/strong><\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Modern social engineering attacks use non-portable executable (PE) files like malicious scripts and macro-laced documents. Every month, Windows Defender AV detects non-PE threats on over 10 million machines. Learn how machine learning drives next-gen protection capabilities and cloud-based, real-time blocking of new and unknown threats: Machine learning vs. social engineering (Note: Our Tech support scams [&hellip;]<\/p>\n","protected":false},"author":61,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"_classifai_error":"","footnotes":""},"content-type":[3663],"topic":[3687],"products":[3690,3694],"threat-intelligence":[3736],"tags":[],"coauthors":[1968],"class_list":["post-75543","post","type-post","status-publish","format-standard","hentry","content-type-research","topic-threat-intelligence","products-microsoft-defender","products-microsoft-defender-for-endpoint","threat-intelligence-social-engineering-phishing"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.9 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Links in phishing-like emails lead to tech support scam | Microsoft Security Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Links in phishing-like emails lead to tech support scam | Microsoft Security Blog\" \/>\n<meta property=\"og:description\" content=\"Modern social engineering attacks use non-portable executable (PE) files like malicious scripts and macro-laced documents. Every month, Windows Defender AV detects non-PE threats on over 10 million machines. Learn how machine learning drives next-gen protection capabilities and cloud-based, real-time blocking of new and unknown threats: Machine learning vs. social engineering (Note: Our Tech support scams [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/\" \/>\n<meta property=\"og:site_name\" content=\"Microsoft Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2017-08-07T13:00:01+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-16T06:04:43+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-microsoft_logo_element.png\" \/>\n\t<meta property=\"og:image:width\" content=\"512\" \/>\n\t<meta property=\"og:image:height\" content=\"512\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Microsoft Defender Security Research Team\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Microsoft Defender Security Research Team\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/\"},\"author\":[{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/windows-defender-research\/\",\"@type\":\"Person\",\"@name\":\"Microsoft Defender Security Research Team\"}],\"headline\":\"Links in phishing-like emails lead to tech support scam\",\"datePublished\":\"2017-08-07T13:00:01+00:00\",\"dateModified\":\"2023-05-16T06:04:43+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/\"},\"wordCount\":1320,\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/\",\"name\":\"Links in phishing-like emails lead to tech support scam | Microsoft Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\"},\"datePublished\":\"2017-08-07T13:00:01+00:00\",\"dateModified\":\"2023-05-16T06:04:43+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Links in phishing-like emails lead to tech support scam\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"name\":\"Microsoft Security Blog\",\"description\":\"Expert coverage of cybersecurity topics\",\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\",\"name\":\"Microsoft Security Blog\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"width\":512,\"height\":512,\"caption\":\"Microsoft Security Blog\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Links in phishing-like emails lead to tech support scam | Microsoft Security Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/","og_locale":"en_US","og_type":"article","og_title":"Links in phishing-like emails lead to tech support scam | Microsoft Security Blog","og_description":"Modern social engineering attacks use non-portable executable (PE) files like malicious scripts and macro-laced documents. Every month, Windows Defender AV detects non-PE threats on over 10 million machines. Learn how machine learning drives next-gen protection capabilities and cloud-based, real-time blocking of new and unknown threats: Machine learning vs. social engineering (Note: Our Tech support scams [&hellip;]","og_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/","og_site_name":"Microsoft Security Blog","article_published_time":"2017-08-07T13:00:01+00:00","article_modified_time":"2023-05-16T06:04:43+00:00","og_image":[{"width":512,"height":512,"url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-microsoft_logo_element.png","type":"image\/png"}],"author":"Microsoft Defender Security Research Team","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Microsoft Defender Security Research Team","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/"},"author":[{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/windows-defender-research\/","@type":"Person","@name":"Microsoft Defender Security Research Team"}],"headline":"Links in phishing-like emails lead to tech support scam","datePublished":"2017-08-07T13:00:01+00:00","dateModified":"2023-05-16T06:04:43+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/"},"wordCount":1320,"publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/","name":"Links in phishing-like emails lead to tech support scam | Microsoft Security Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website"},"datePublished":"2017-08-07T13:00:01+00:00","dateModified":"2023-05-16T06:04:43+00:00","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/08\/07\/links-in-phishing-like-emails-lead-to-tech-support-scam\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/"},{"@type":"ListItem","position":2,"name":"Links in phishing-like emails lead to tech support scam"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","name":"Microsoft Security Blog","description":"Expert coverage of cybersecurity topics","publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization","name":"Microsoft Security Blog","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","width":512,"height":512,"caption":"Microsoft Security Blog"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/"}}]}},"msxcm_display_generated_audio":false,"distributor_meta":false,"distributor_terms":false,"distributor_media":false,"distributor_original_site_name":"Microsoft Security Blog","distributor_original_site_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog","push-errors":false,"_links":{"self":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/75543"}],"collection":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/users\/61"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/comments?post=75543"}],"version-history":[{"count":0,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/75543\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/media?parent=75543"}],"wp:term":[{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/content-type?post=75543"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/topic?post=75543"},{"taxonomy":"products","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/products?post=75543"},{"taxonomy":"threat-intelligence","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/threat-intelligence?post=75543"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/tags?post=75543"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/coauthors?post=75543"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}