Tech support scams are among the oldest and most persistent, and they are becoming increasingly sophisticated.

These scams usually involve a scammer posing as a technology company and aim to convince you that your device, usually a computer or laptop, is infected with a virus, malware, or other security threat. As awareness of these scams has increased, fraudsters are using different tactics to trick people into handing over money.

Read on to learn about the latest tactics scammers are using and how to avoid them.

Sign up for scam alerts

Our emails will alert you to scams circulating and provide practical advice to keep you one step ahead of the scammers.

Sign up for scam alerts

How Tech Support Scams Work

Tech support scammers generally attempt to contact their potential victims in two main ways: by phone call or by tricking you into clicking on a pop-up window on the web.

No matter how they try to reach you, the story they tell is almost always the same. Microsoft and the Microsoft Windows brand are still the most impersonated, according to Action Fraud reports, but scammers are also impersonating Dell, Apple and Google.

The caller’s real number may be hidden (called identity theft) so that it appears on your phone as a business or other number, preventing you from knowing the true origin of the call.

The caller claims that you either need to renew a software license to continue using your device or certain software, like Microsoft Office. Or they will warn you that your device contains malware or is attacked by another security threat.

Tech support scammers can also reach you through fake pop-ups that may appear on websites. While you are browsing the Internet, a pop-up appears on your screen warning you that your device has a problem. This is false, but if you click on the pop-up buttons, they can open windows on your screen, which can make it appear as if your device has been closed, making you believe that a virus is preventing you from use it.

Often a link or number will appear for you to contact for help. This is a direct line to scammers who will follow the same steps to steal your money.

Both of these approaches trick people into sharing payment information, which can snowball into victims having thousands of dollars stolen from their bank accounts.

Scammers often manage to trick victims into downloading screen sharing software so they can see your screen or even take control of your device.

How Fraudulent Tech Support Tactics Are Getting Sneakier

Most cold calling scams operate randomly, calling numbers in the hopes that a few people will answer and fall for the scam. Sometimes they may have a list of numbers and associated names to target, but nothing else.

But scammers are getting better at social engineering, where they use a mix of personal information about you that they’ve collected online and psychological strategies to convince you that the scam is real.

Here are some of the ways they do it:

1. Collect detailed information about you and your device. Tech support cold calls will often know their victims by name. But victims told us that scammers seem to know specific information about the devices they use, like models or serial numbers, as well as the software they use. They also know home addresses and other personal information such as passwords, who you bank with, and even the names of your loved ones. They likely obtained your details through online data leaks, or from a phishing email, social media site, or message you may have responded to in the past. Be wary if a caller tries to prove they are legitimate by listing every information they know about you.

2. Overlay calls and fake messages. Once they have victims on the phone, tech support scammers may send text messages or other messages as part of their story, trying to convince you that the scam is real. They may send you additional security warnings or fake messages reassuring you that your device is being updated or repaired. The messages may also prompt you to follow instructions to progress further toward giving scammers access to your device or transferring money. Another tactic is to transfer your call to “colleagues” in other departments, or even to people pretending to be from your bank or the police. Introducing others posing as experts or authority figures continues to create the illusion that you are in a serious situation. When you receive multiple messages informing you of an urgent threat, it can be more convincing.

3. Fake advertisements on search engines. Scammers post fake advertisements for technical support services that may appear in web search results. They are designed to target victims who are searching online for answers to problems with their computer or other devices. When you ask a search engine for help with a technical problem you’re experiencing, certain keywords can trigger fraudulent ads to appear. These adverts may lead to professional-looking websites that appear to offer IT services, but if you make contact you will encounter criminals looking to exploit you.

How to protect yourself from tech support scams

1. Ignore phone calls or messages claiming to be from tech companies like Microsoft, Google, and Apple. Technology companies never call their customers to warn them about security threats or to ask for money, passwords or security codes, no matter what the caller tells you to convince you otherwise.
2. Never let anyone control your personal devices remotely. There is very little reason why anyone would need to do this.
3. Never let anyone access or view your financial accounts. Scammers will often ask you to share your device screen so they can see your personal or banking information, pretending they are offering to help you with a transaction when in reality they are manipulating you so they can steal your money.
4. If you need technical help, contact trusted experts. If you have a problem with your computer or other device, do not accept help from someone who has contacted you unsolicited. Also watch out for online advertisements offering technical support.
5. Keep your devices up to date. Install the latest software updates as soon as they are released to protect your devices against the latest security threats.
6. Enable pop-up blocking on your Internet browser. Browsers like Edge, Chrome, Firefox, and Safari offer options in settings to block pop-ups, so you’re protected from malicious messages.
7. Use antivirus software with a pop-up blocker. The risk of contracting malware is reduced if you install antivirus software, run regular system scans, and enable pop-up blocking.

• Learn more: the most common types of phone scams and how to avoid them

What to do if you think you’ve been scammed

If you’ve been contacted by someone claiming to be from an organization and something doesn’t seem right, you can end the call or chat at any time.

If you’ve lost money to a tech support scam, call your bank or contact the affected accounts immediately. If you transferred the money by bank transferthe bank should be able to reimburse you, partially or completely, depending on the amount stolen.

Report it to Action Fraud online or by calling 0300 123 2040. If you live in Scotland, you can report the scam to the police by calling 101.