CP
cyberpings
Malware & RansomwareHIGH

Fake Tech Support Spam Unleashes Havoc on Organizations

THThe Hacker NewsMar 3, 2026
Havocmalwarescamscybersecurityphishing
🎯

Basically, scammers pretended to be tech support to steal data using malware.

Quick Summary

Scammers are posing as tech support to deploy malware across organizations. This affects anyone who might receive a suspicious call or email. Ignoring these scams can lead to serious data breaches. Stay vigilant and verify unexpected communications.

What Happened

Imagine getting a call from someone claiming to be your tech support, only to find out they are scammers. Recently, threat hunters discovered a new campaign where bad actors impersonated IT support to deliver the Havoc command-and-control (C2)? framework. This malicious tool is often used as a precursor to serious threats like data theft or ransomware? attacks.

Last month, Huntress identified these intrusions across five partner organizations. The attackers initiated their scheme by sending out spam emails designed to lure victims. Once the unsuspecting targets engaged, the scammers followed up with a phone call, further convincing them to install the malicious software. This tactic not only exploits trust but also highlights the evolving nature of cyber threats.

Why Should You Care

You might think tech support scams only happen to others, but they can happen to you too. If you receive an unexpected call from someone claiming to be from your IT department, it could be a scammer trying to gain access to your sensitive information. Just like leaving your front door unlocked, ignoring these threats can lead to severe consequences.

In today’s digital world, your personal and financial information is constantly at risk. Imagine if a thief had the keys to your home; they could take anything they wanted. Similarly, if scammers gain access to your devices, they can steal your data or even lock you out of your own files. Protecting yourself starts with being aware of these scams.

What's Being Done

Organizations are now on high alert, and cybersecurity teams are responding swiftly to these threats. Here are some immediate actions you should consider:

  • Verify any unexpected calls by contacting your IT department directly.
  • Educate your team about recognizing phishing emails and scams.
  • Implement robust security measures, including multi-factor authentication. Experts are closely monitoring this situation, as they expect more sophisticated tactics to emerge from these threat actors in the coming weeks.

💡 Tap dotted terms for explanations

🔒 Pro insight: The use of social engineering tactics in this campaign underscores the need for continuous employee training on cybersecurity awareness.

Original article from

The Hacker News

Read Full Article

Share

Related Pings

HIGHMalware & Ransomware

Ransomware Groups Shift Tactics Amid Declining Profits

Ransomware groups are adapting their tactics due to declining profits. With a 47% increase in attacks, everyone is at risk. Stay informed and protect yourself from these evolving threats.

Recorded Future Blog·Jan 5, 2026
HIGHMalware & Ransomware

Ransomware Leader Pleads Guilty, Faces 20 Years Behind Bars

The leader of the Phobos ransomware gang has pleaded guilty, impacting over 1,000 victims worldwide. This case highlights the serious threat of ransomware and the importance of cybersecurity. Authorities are working to dismantle the remaining gang members and prevent future attacks.

CyberScoop·Mar 5, 2026
HIGHMalware & Ransomware

Shai-Hulud Worm 2.0 Escalates Supply Chain Attacks

A new worm named Shai-Hulud is targeting the Node.js ecosystem, escalating risks for developers and users. This attack could compromise trusted software, leading to data theft and financial losses. Stay updated and secure your code to protect against this emerging threat.

Intel 471 Blog·Dec 10, 2025
HIGHMalware & Ransomware

Ransomware Alert: Lessons from Clop's Cyber Attacks

Clop's recent attacks highlight the urgent need for businesses to strengthen their ransomware defenses. With the threat of data leaks and financial loss, every organization is at risk. Now is the time to prepare and protect your data.

Flashpoint Blog·Jun 27, 2023
HIGHMalware & Ransomware

Malicious Updates Target eScan Antivirus in Supply Chain Attack

A supply chain attack has compromised eScan antivirus updates with malware. Users are at risk of data breaches and compromised security. Kaspersky is providing guidance to help detect and mitigate the threat.

Kaspersky Securelist·Jan 29, 2026
HIGHMalware & Ransomware

Keenadu Backdoor Exposes Major Android Botnet Connections

Kaspersky has uncovered Keenadu, a new backdoor targeting Android devices. This threat connects major botnets, putting millions at risk. Users should update their devices and be cautious with app downloads.

Kaspersky Securelist·Feb 17, 2026