How to Recognize Tech Support Scams


That Pop-up is Lying to You

Tech support scams are built on panic. A warning flashes on your screen. A caller tells you your device has been compromised. An email arrives that looks like a charge you never authorized. The message is always urgent, and it always has a solution ready, one that puts you in contact with a scammer instead of a real technician.

These scams are among the most frequently reported types of fraud, and they can be convincing. Here’s how they work and what you can do to protect yourself.

 

How Tech Support Scams Work

Scammers typically make first contact in one of four ways:

  • Pop-up alerts. A warning appears on your screen, sometimes with sound, claiming your computer has a virus or has been locked. The alert instructs you to call a phone number right away. These pop-ups are fake. Closing the browser window or restarting your device is usually all it takes to make them disappear.
  • Unsolicited phone calls. A caller claims to represent a well-known technology company such as Microsoft, Apple, or an internet service provider. They say there’s a problem with your device and they need to help you fix it. Legitimate companies do not make unsolicited calls about technical problems.
  • Fake invoice or receipt emails. You receive an email designed to look like an invoice or renewal notice from a familiar company, often Geek Squad, Norton, McAfee, or a similar tech brand. The email claims you’ve been charged for a service and provides a phone number to call if you want to dispute it. That number connects you to a scammer, not the real company. Some of these emails also include attachments or links that install malware if clicked.
  • Phishing emails. An email appears to come from a trusted tech brand, warning you of a security issue or suspicious activity on your account. These emails may contain links to fake websites or phone numbers that connect you to scammers.

 

What Scammers Are After

Once they have your attention, tech support scammers typically try to accomplish one or more of the following:

  • Remote access to your computer. They may ask you to download software that gives them control of your screen. With that access, they can steal personal information, install malware, or lock you out of your own device.
  • Payment for fake services. They may charge you for repairs or software you don’t need. Payment is often requested by gift card, wire transfer, or cryptocurrency, methods that are difficult to trace or recover.
  • Your personal or financial information. Under the guise of verifying your identity or processing a refund, they may ask for account numbers, Social Security numbers, or banking credentials.

 

How to Protect Yourself

Don’t engage with unsolicited contact. Whether it’s a pop-up, a call, or an email you didn’t expect, it’s okay to close the window, hang up, or delete the message. You are not being rude, you are being smart.

Don’t call numbers from pop-up alerts or unexpected emails. Close the browser tab or restart your device instead. If you receive an invoice email for a charge you don’t recognize, go directly to the company’s official website to verify, and never use the contact information in the email itself.

Never open attachments or click links in unexpected emails. Even if the email looks official, attachments and links in unsolicited messages can install malware on your device.

Never allow remote access to someone who contacted you first. Granting remote access to an unsolicited caller gives them full visibility into your device and everything on it.

Don’t trust caller ID. Scammers can manipulate caller ID to make it appear they are calling from a legitimate company. A recognizable name on the screen is not proof of identity.

Be skeptical of any unusual payment request. No legitimate tech company will ask you to pay for services with gift cards, wire transfers, or cryptocurrency. If someone asks you to pay this way, stop the conversation.

Go directly to the source. If you receive a message that concerns you, don’t use the contact information provided in that message. Look up the company’s official website and call the number listed there.

 

If You Think You’ve Been Targeted

If you’ve already interacted with someone you now believe was a scammer, act quickly:

  • Change your passwords for any accounts that may have been exposed.
  • Run a security scan on your device using software you trust.
  • Contact F&M Bank immediately if you shared any financial information or made a payment.
  • Report the scam to the Federal Trade Commission at ReportFraud.ftc.gov.

 

Contact F&M Bank directly if you have questions about a check or suspect fraudulent activity on your account. You can reach us through our contact page or visit any of our local offices. For more security resources, visit our Security Center.