Microsoft has introduced a new tool called the “scareware blocker” to combat pervasive online scams. The tool utilizes machine learning and computer vision to identify and block scareware, which often involves fake antivirus software tricking users into installing malicious programs or paying for unnecessary software. Scareware has been a longstanding issue on the internet, with scams frequently targeting unsuspecting individuals, especially older users. In 2022, two tech support firms paid a $26 million settlement to the U.S. Federal Trade Commission for using scare tactics to deceive consumers.
The scareware blocker, currently being tested through a preview program in Microsoft Edge, adds an extra layer of security to the company’s existing protection tools like Microsoft Defender SmartScreen. The tool specifically targets scams that attempt to open full-screen pages, which can be more challenging for users to identify and navigate out of. The goal is to prevent users from inadvertently falling victim to scams by taking control when such pages appear, stopping audio playback, and giving users the option to either continue or close the page.
To develop the tool, Microsoft trained its machine learning model using thousands of real-world scam samples. The model uses computer vision to compare new scams it encounters in real time with previously learned examples. If the system identifies potential scareware, it will intervene, exit full-screen mode, and stop any accompanying audio.
This proactive approach aims to stop users from interacting with harmful sites while providing a simple mechanism to address potential threats.
While the scareware blocker uses machine learning to analyze screens, Microsoft ensures that the model operates locally on users’ machines, without sending data to the cloud, addressing concerns about privacy. Users can opt to provide feedback or report false positives, such as when a legitimate site is incorrectly flagged as a scam. Through these efforts, Microsoft seeks to enhance the overall security experience for its users, particularly those vulnerable to online scams.
