In Asheville, North Carolina, a new and profoundly concerning scam is taking root, catching many off-guard with its sophisticated approach. This elaborate ruse sees fraudsters posing as Microsoft employees to gain the trust and access to the homes of unsuspecting residents. 

The Asheville Police Department (APD) is raising alarms about this particular scheme, not only because of the financial devastation it has caused but also due to its highly unusual modus operandi. 

The scam starts with malware that tricks victims into believing their computers are compromised. This leads to a phone call from the impostors who, under the guise of fixing the issue, convince the victims to hand over significant sums of cash directly. 

The fact that scammers make physical visits to collect money directly from their victims sets this fraud apart from typical cyber scams, which usually rely on remote deception. This direct interaction intensifies the risk and complexity, making it a particularly sinister breach of trust and security.

Nature of the Scam:

The nature of this audacious scam begins with a highly deceptive tactic involving malware that targets unsuspecting computer users. Once infected, the victim’s computer displays a distressing and fraudulent pop-up message claiming that their system has been locked or frozen due to a security issue. 

This message is carefully designed to create a sense of urgency and panic, compelling the victim to take immediate action. It directs them to contact a specific phone number, which the scammers present as a legitimate Microsoft support line.

Upon making the call, the victim is connected not to genuine tech support but to a skilled con artist trained to manipulate and reassure. 

These impostors are adept at building trust and creating a plausible scenario. They convince the victim that the only way to unlock their computer and safeguard their data is to pay a fee directly. The victim, driven by fear of losing valuable or personal data, is then instructed to withdraw substantial cash from their bank.

The scam escalates to an even more daring level when an individual posing as a Microsoft technician physically appears at the victim’s doorstep. This person claims to be there to resolve the computer issue, but they intend to take the cash under the pretense of payment for tech support. This face-to-face interaction is a highly unusual and bold move, starkly contrasting with common online frauds that typically avoid personal contact. The direct collection of cash not only adds a layer of credibility to the scam in the eyes of the victim but also significantly increases the risk and impact of the fraud. This systematic and personal approach marks a disturbing evolution in the tactics used by digital scammers, making it a complex and effective deception.

Comments from Law Enforcement:

In discussing the nuances of this alarming scam, APD Detective Sgt. Tracy Crowe emphasized its exceptional nature and the audacious behavior it represents. He pointed out how extraordinary it is to encounter a fraud scheme that involves direct personal interaction, such as sending someone to a victim’s residence. 

“It’s very rare that we see an in-person fraud where they send someone to your residence,” Sgt. Crowe remarked, underscoring the boldness and unusual methodology employed by these scammers. This tactic diverges sharply from more common fraudulent practices, which rely on anonymity and remote deception.

Sgt. Crowe also took the opportunity to educate the public about the operational modes of legitimate businesses, which starkly contrast the methods used by these impostors. He stressed that no reputable company would ever dispatch representatives to personally collect money for services, especially in an intrusive and unsolicited manner. The fraudsters’ approach not only violates typical business protocols but also exploits the trust and security typically afforded to professional service visits.

By highlighting these points, Sgt. Crowe aims to raise awareness about the red flags associated with such unusual requests and encourages residents to remain vigilant. He hopes that by exposing these criminals’ bold and unconventional tactics, the community will be better prepared to recognize and resist similar scams, thereby protecting their personal and financial security.

The police described the suspect’s vehicle as a dark silver or gray Toyota Highlander, which may have noticeable damage to the front right quarter panel. Additionally, a photo of one of the suspects involved has been circulated in hopes that members of the public can aid in their identification.

Local cybersecurity experts have expressed shock at the scam’s brazenness. Ed Carroll, the Senior Director at the Montreat College Carolina Cyber Center, remarked, “I, personally, have never heard of people going in person quite like this. It takes it to another level. We can try voice, texting, email, and now, in some cases, we can prove that we can do this in person.”

In response to these incidents, the APD has issued a stern warning to residents, urging them to be vigilant and to verify the identity of anyone claiming to be a company representative. They have stressed that no legitimate company, including Microsoft, would ever request such direct and unconventional methods of payment or support.

In light of these events, a spokesperson from Microsoft reiterated the company’s policy, stating that Microsoft does not send employees to collect money, nor does it contact customers to request personal or financial information unsolicited. The spokesperson advised customers to initiate contact with Microsoft themselves and always treat unsolicited communications with skepticism.

The community has been urged to remain alert and informed. Anyone with information about the incidents or the suspect vehicle is encouraged to contact the Asheville Police Department at their direct line, 828-252-1110. Anonymous tips can also be sent using the TIP2APD smartphone application or by texting TIP2APD to 847411.

This scam serves as a critical reminder of the evolving nature of digital fraud and the importance of maintaining vigilance with personal and financial information. Residents are advised to educate themselves on fraudsters’ tactics and take proactive steps to verify the legitimacy of any unexpected or unsolicited offers of technical support.