The Microsoft IT outage that affected services around the world on Friday was caused by a software update by third-party cybersecurity technology company CrowdStrike.
The outage, which is still causing disruption, affected 8.5 million Windows devices, according to Microsoft. Though Microsoft noted that this is less than 1% of all Windows machines, it caused systems to crash around the world, affecting services such as online banking portals and air travel.
While the outage was not caused by a cyberattack, there are growing concerns from both CrowdStrike and government agencies about how scammers are taking advantage of the confusion surrounding the outage and malicious cyber activity.
Several organisations, including the US Cyber Defense Agency, the UK’s National Cyber Security Centre and Australia’s National Fraud Centre, are now warning consumers to be on the lookout for scams.
Read more: CrowdStrike’s role in Microsoft IT outage explained
According to CrowdStrike’s blog, “the eCrime actors are likely using filenames that capitalize on the date July 19, 2024,” specifically a malicious ZIP archive called “crowdstrike-hotfix.zip” to extract data from customers.
As the power outage continues to cause chaos, here’s how to protect yourself from scammers.
Be on guard
This first step has already begun: be wary of phishing scams that have emerged in response to the CrowdStrike outage, and avoid downloading zip files or software from unknown sources that claim to help resolve the outage.
Be cautious if you receive a request for personal information from a number you don’t recognize, and never share sensitive information with unverified sources.
The UK’s National Cyber Security Centre has published a robust guidance sheet for organisations and businesses to protect their employees from phishing, which includes four layers of mitigation, from adopting anti-spoofing controls to making employees aware of phishing tactics and the techniques used to trick users into handing over their information or making fraudulent payments.
Go directly to the official website
David Brumley, a professor of electrical and computer engineering at Carnegie Mellon University, told TIME that he saw several types of scams over the weekend. Most notably, bad actors impersonating CrowdStrike and offering to help businesses in the aftermath of an outage. He also saw scammers posing as airlines and other organizations offering to help affected businesses. Brumley said your best bet is always to contact a company representative directly.
“if you [these businesses] “If you’re ever in any doubt, please call us directly,” Brumley said.
CrowdStrike has its own “Remediation and Guidance Hub” on its blog to help those affected, and Microsoft also has its own support page.
Be sure to contact these companies through their official pages or help desks instead of responding to text messages or emails claiming to be from the company or associated organisations.
Don’t rush
Catriona Lowe, deputy chair of the Australian Competition and Consumer Commission, said these scammers often create a “sense of urgency to do what they say to protect your computer and financial information”.
The best way to combat this is to slow down and avoid giving out personal information, especially via text or email, to unverified sources.
Report a scam
Some countries have designated websites where you can report scams. In Australia, you can visit Scamwatch for further assistance. In the UK, victims or those with concerns can email report@phishing.gov.uk, while in the US, cases of fraud can be reported through the Federal Trade Commission.
Reach out to vulnerable friends and family
According to the National Institute on Aging, older adults (typically defined as those aged 65 and older) are often targets of scams. If possible, reach out to older friends and family members to see if they have the tools listed above and are aware of the rise in phishing scams due to disability.
Australia’s Minister for Home Affairs and Minister for Cyber Security, Claire O’Neill, also highlighted the need to protect people who are vulnerable to fraud. A series of posts shared on X (formerly Twitter) “It’s really important that Australians pay close attention to any unexpected text messages, phone calls or emails claiming to help regarding this issue,” she said. She went on to point out that people can help by “ensuring that vulnerable people, including elderly relatives, are taking extra care at this time.”