Blog Fraud & Scams

Tech support scams: How to spot, report, and avoid them

A tech support scam is a scheme where fraudsters pretend to be from a trusted company and claim there’s a problem with your device, account, or payment. These scams often start with a fake virus alert, an unexpected call, a suspicious email, or a request to install remote-access software. If this happens, don’t click suspicious links, answer calls, share verification codes, or give anyone access to your device — report the incident to the company being impersonated, your bank if money was involved, and your local authorities. This post explains the warning signs of tech support scams, how they work, and what to do if you or someone close to you has been targeted.

Lukas Grigas

Lukas Grigas

Jun 2, 2026

10 min read

Tech support scams: How to spot, report, and avoid them

How does a tech support scam work?

Tech support scams usually unfold in stages. Not every scam follows the exact same script, but most rely on the same pattern: pressure first, access second, payment last.

  1. The scam reaches you first. The scam may start with a pop-up warning, unsolicited phone call, email, or text message. It usually claims that something needs your immediate attention — an infected device, expired subscription, compromised account, or suspicious activity.
  2. The warning makes the problem feel urgent. Scammers use fear to stop you from thinking clearly. They may say your files will be deleted, your data is exposed, or your IP address has been linked to illegal activity. The goal is to make you act before you check whether the warning is real.
  3. The “technician” asks for remote access. Next, they tell you to download remote access software so they can inspect your device. Once connected, they may change settings, install malware, steal files, or make normal system activity look suspicious.
  4. They fake a diagnosis. Scammers often point to ordinary system logs, error messages, or random files and claim they are signs of a virus or breach. Some may even create new problems on your device so their “repair” looks convincing.
  5. They demand payment. Once they’ve made the issue seem serious, they ask you to pay for the fake repair or security service. The FBI’s 2025 IC3 report found that victims who reported tech/customer support losses most often paid with cryptocurrency, wire transfer, debit or credit cards, prepaid or gift cards, or in some cases cash sent over snail mail.
  6. They may target you again. Paying once can make you a repeat target. The scammer may claim the issue has resurfaced, push a fake support plan, or use the information they already collected to try another scam later.

Knowing this pattern makes tech support scams easier to spot in real time. 

Common types of tech support scams

Tech support scams are easier to recognize when you know where they usually appear. Many of them are also impersonation scams, because the scammer pretends to represent a trusted company, vendor, or support team. The examples below show the most common entry points — from phone calls to pop-ups and fake invoices — and the details that make each one suspicious.

Tech support
scams examples

How it works

Signs and red flags

Phone scams

You receive an unsolicited call from someone claiming to be a technician from Microsoft, Apple or another legitimate tech company. These phone scams usually warn of a problem and ask you to share login credentials or give remote access. Learn more about voice based scams in our “What is vishing” post.

The call is unsolicited, the caller uses urgency and insists you stay on the phone. They request gift card or wire transfer payments and ask for personal or financial information.

Browser pop‑up/browser lock

When visiting a website, you suddenly see a full‑screen pop‑up with a loud alarm. It claims your computer is infected and lists a tech support number to call. Sometimes the pop‑up cannot be closed, creating a “lock” effect.

Real error messages from legitimate companies never include a phone number and would never create a “lock” effect.

Fake invoice or refund emails

You receive an email stating you’ll be charged for a new antivirus subscription or a large software purchase. The email includes a phone number to call if you didn’t authorize the transaction. When you call, scammers claim they need to refund you by connecting to your computer.

The email often has poor grammar or comes from a generic address. Scammers may request bank details to process a refund, then trick you into sending money. A geek squad scam email is a common example of this tactic.

Social media and YouTube scams

Scammers leave comments on videos or send direct messages pretending to be support staff. They may promote fake tech support hotlines or ask you to click on malicious links.

Always verify an account’s official status. Legitimate companies rarely provide support via random comments or direct messages.

Vendor impersonation

Criminals impersonate software vendors, IT departments or well‑known companies. They send fake invoices or call small businesses claiming urgent security updates are needed.

If you’re a business owner, verify directly with your vendor or IT team. Do not pay invoices or allow remote access unless you initiate the request.

What should you do if you became a victim of tech support scam?

If you’ve been targeted by a tech support scam, quick action can limit the damage. Start by cutting off access, then secure your device, accounts, and money.

  1. Cut off the scammer immediately. Hang up, close the chat, and stop replying. If they have remote access, disconnect from the internet or shut the device down.
  2. Remove suspicious software. Uninstall any remote access apps, “security tools,” or other programs the scammer told you to download. If you’re unsure what they installed, contact a trusted IT professional or your device manufacturer’s official support team.
  3. Scan your device. Run a full malware scan with reputable security software, and make sure your operating system and apps are up to date.
  4. Change your passwords. Prioritize email, banking, payment apps, cloud storage, and social media. Treat any password you entered during the scam as exposed.
  5. Contact your bank or payment provider. If you paid or shared financial details, ask whether they can stop the transaction, reverse the charge, freeze your card, or monitor your account.
  6. Report the scam. In the US, report it to the FTC at ReportFraud.ftc.gov. In Europe, contact your national consumer protection agency or local police.
  7. Watch for follow-up scams. Scammers may contact you again with fake refund, recovery, or support offers. If your personal or financial information was exposed, consider identity theft recovery support to help you respond if your information is misused.

How can you report a tech support scam?

Once you’ve secured your device and accounts, the next step is to report the scam. A report may not undo the damage right away, but it helps authorities and companies track scammers, remove fake pages or accounts, and warn other people.

Here’s how to report a tech support scam:

  1. Gather the evidence you already have. Save scam numbers, email addresses, website links, screenshots, chat messages, receipts, payment details, and the name of the company the scammer claimed to represent.
  2. Report it to your national fraud authority. In the US, file a report with the Federal Trade Commission at ReportFraud.ftc.gov. Include what happened, how the scammer contacted you, what they asked you to do, and how you paid.
  3. Report the impersonation to the company involved. If the scammer claimed to be from Microsoft, Apple, your antivirus or anti-malware provider, your internet provider, or another company, report it through that company’s official website. This helps the company investigate fake support pages, phone numbers, emails, or ads using their name.
  4. File a police report if you lost money or shared sensitive data. Contact your local police, especially if the scammer accessed your device, stole money, or got your personal or financial information.
  5. Warn people close to you. Tell friends, family, or coworkers what happened, especially if the scammer used a convincing script or impersonated a well-known company. Sharing the details can help someone else recognize the same scam before they fall for it.

Keep your report factual and specific. Include dates, amounts, payment methods, links, and screenshots where possible. The more detail you provide, the easier it is for investigators to connect your report to similar scams.

How can you avoid tech support scams?

The best way to avoid tech support scams is to remember how they work. Your goal is to slow the situation down and verify everything before you act.

Here are practical ways to protect yourself from tech support scams:

  1. Be suspicious of unexpected tech support messages. Treat unsolicited calls, pop-ups, emails, or text messages as suspicious, especially if they claim your device is infected, your data is at risk, or your account needs urgent attention. Legitimate companies don’t call out of the blue to fix a problem you didn’t report.
  2. Don’t use contact details from pop-ups or unexpected messages. If you think there may be a real issue, close the message and contact the company yourself. Scammers can use spoofing to make phone numbers, email addresses, or websites look official, so don’t rely on contact details from alerts, emails, or texts. Use its official website, app, account dashboard, or a phone number from your receipt or subscription documents.
  3. Never provide remote access to someone who contacted you first. Only allow remote access when you start the support request through an official channel and you’re sure you’re speaking to the real company. Remember, legitimate companies rarely ask for remote access, especially if they contacted you first.
  4. Keep your device protected and up to date. Turn on automatic updates for your operating system, browser, and apps. Use reputable security software and run regular scans to help detect malware, risky downloads, and suspicious activity.
  5. Use strong passwords and multi-factor authentication. Use a unique password for every important account, especially email, banking, shopping, cloud storage, and social media. Turn on multi-factor authentication wherever possible.
  6. Use identity theft protection as an extra safety layer. Tech support scammers usually rely on exposed contact details, such as phone numbers and email addresses, to find potential targets. If your personal data appears in a breach or on the dark web, you are more likely to receive scam calls, fake support emails, or phishing messages. Identity theft protection services such as Coveron can help you spot exposed data early, respond if your information is misused, and provide services such as scam protection.
  7. Stay aware of new scam tactics. Scammers change their scripts often, especially as AI makes fake calls, messages, and support interactions more convincing. Follow trusted cybersecurity sources and share new warning signs with people around you.

References

FTC: ReportFraud.ftc.gov

Coveron blog banner

Get notified and act immediately.

Protect yourself with dark web monitoring
Get Coveron

30-day money-back guarantee

FAQ

Lukas Grigas

Lukas Grigas

Lukas is a digital security and privacy enthusiast with a passion for playing around with language. As an in-house writer at Nord Security, Lukas focuses on making the complex subject of cybersecurity simple and easy to understand.

Trending articles