Skip to Content

Cybersecurity Knowledge Base

CyberPedia


Your essential guide to cybersecurity threats, attacks, and defenses. Understand the risks. Protect your business.

Tech Support Scam

Overview

tech support scam is a type of fraud where criminals pretend to be technical support or security staff from a well‑known company (like Microsoft, Apple, your internet provider, or even your employer) to trick you into paying for fake services, handing over information, or giving them control of your device. In plain terms, they scare you into believing something is wrong with your computer or account, then “offer” to fix a problem they invented.

How Tech Support Scams Start

These scams typically begin in one of three ways:

  • Unsolicited phone call

    • Someone calls you out of the blue claiming to be from “Microsoft Support,” your ISP, or “security team,” saying they detected viruses or hacking on your device or network.

  • Scary pop‑up or fake alert

    • Your screen suddenly shows a full‑screen warning saying your computer is infected or blocked.

    • It often includes a phone number to call or a button to “contact support now.”

  • Search results and fake help sites

    • You search for tech support or a company’s help line and click on a fake ad or website that connects you to scammers instead of the real support team.

What the Scammers Claim

Tech support scammers use fear and urgency. They might say:

  • “Your computer is badly infected with viruses or malware.”

  • “Your router has been hacked and criminals are using your connection.”

  • “Your bank account is at risk; we must secure it right now.”

  • “Your license or subscription has expired—you must renew immediately.”

  • “We’ve detected illegal activity on your device.”

They often show:

  • Confusing system screens, logs, or harmless error messages and pretend they are proof of serious infections.

  • Fake “scan results” that always show problems, even on a perfectly healthy computer.

How a Tech Support Scam Usually Works

While details vary, many follow a similar pattern:

  1. Contact and fear

    • They get your attention (call, pop‑up, fake site) and claim there’s an urgent problem only they can fix.

  2. Remote access

    • They convince you to install or run a remote‑access tool (like AnyDesk, TeamViewer, or similar) so they can “help.”

    • Once connected, they can move your mouse, open files, and control your device.

  3. Fake diagnosis

    • They run commands or show built‑in tools (like the Event Viewer) that always have some warnings and errors, then claim these are evidence of major issues.

  4. Pressure to pay

    • They offer to “clean” your system, renew your license, or provide a support plan—for a fee.

    • They may ask for payment via card, bank transfer, gift cards, or other hard‑to‑reverse methods.

  5. Additional harm

    • While connected, they may:

      • Install real malware or backdoors.

      • Steal passwords, files, or other data.

      • Change settings so your device is more dependent on them.

  6. Ongoing exploitation

    • Some scammers come back later for more money, claiming new issues, or they continue to access your machine without your knowledge.

What Tech Support Scammers Want

Their main goals are to:

  • Take your money

    • One‑time “repair” fees or ongoing fake support subscription charges.

  • Steal financial and personal information

    • Card numbers, banking details, identity documents, and passwords.

  • Gain long‑term control of your device

    • So they can return later, use it for other crimes, or sell access to others.

Why Tech Support Scams Work

These scams are effective because they exploit:

  • Trust in big brands and “experts”

    • Many people assume a call or pop‑up from a well‑known company must be genuine.

  • Fear and urgency

    • Messages about viruses, hackers, or bank problems can make people panic and act quickly.

  • Technical confusion

    • Most people don’t fully understand system messages and logs, so scammers can easily misinterpret them to sound alarming.

Common Red Flags

Treat it as suspicious if:

  • You get an unexpected call about a problem with your computer, router, or account.

  • A pop‑up says “Do not shut down your computer” and provides a phone number.

  • The caller or pop‑up insists you must install remote‑access software right now.

  • You’re asked to pay for support or “security fixes” you didn’t ask for.

  • They ask for passwords, one‑time codes, or banking details during the “support” session.

  • They pressure you to use gift cards, cryptocurrency, or wire transfers for payment.

Business Impact

For organizations, tech support scams can:

  • Trick employees into giving strangers remote access to company devices.

  • Lead to malware infections, data theft, and account compromise.

  • Bypass normal IT and security processes by pretending to be “official support” from outside vendors.

  • Cause financial loss and reputational damage if customer or internal data is exposed.

Key Prevention Tips (Plain‑Language)

For individuals and staff:

  1. Remember: real companies don’t cold‑call to fix your computer

    • Microsoft, Apple, your bank, or your ISP will not call you out of the blue to say you have a virus.

  2. Never call numbers shown in pop‑up warnings

    • If you see a scary pop‑up, close the browser or restart the computer.

    • Look up the real company’s support number directly from their official website if you’re concerned.

  3. Do not give control of your computer to unexpected callers

    • Only allow remote access if you initiated the support request and you’re sure it is legitimate.

  4. Never share passwords or full card/bank details during a “support” call

    • Legitimate support may verify some info, but they will not need your password or full one‑time codes.

  5. Be skeptical of pressure and urgency

    • If someone claims you must act immediately or face serious consequences, pause and verify through known, official channels.

What To Do If You Think You’ve Been a Victim

If you suspect you’ve interacted with a tech support scam:

  1. Disconnect the session

    • Close the remote‑access program and disconnect from the internet if needed.

  2. Uninstall any software they had you install

    • Remove remote‑access tools and unknown programs they added.

  3. Run a security scan

    • Use a reputable antivirus/endpoint solution to check for malware.

  4. Change passwords from a clean device

    • Especially for email, banking, and work accounts.

  5. Contact your bank or card provider

    • If you paid or shared card/bank details, report it and follow their guidance.

  6. Report it to the appropriate team

    • At work, inform IT or security.

    • For personal incidents, consider reporting to local consumer protection or fraud‑reporting services.