Fake Geek Squad Antivirus Auto-Renewal Overcharge Scam
Scammers send fake Geek Squad renewal invoices for antivirus subscriptions, then trick alarmed recipients into calling a number where they are convinced to hand over remote access and banking credentials.
Part of: Antivirus Auto-Renewal Overcharge Scams
Last reviewed: 7 June 2026
The Geek Squad antivirus renewal scam is one of the most widespread impersonation frauds in the US. Criminals mass-email official-looking invoices claiming that a Geek Squad or Best Buy Total Tech antivirus subscription has automatically renewed for a substantial fee — typically several hundred dollars — and that recipients should call a refund line immediately if they do not wish to be charged.
Geek Squad is Best Buy's legitimate support and services brand, and many consumers do hold Best Buy memberships or have purchased Geek Squad protection plans. The scam is effective because the target audience includes older adults who may genuinely have technology service subscriptions they cannot easily verify.
The scam's power lies in the sense of financial urgency: even people who are certain they do not have a Geek Squad subscription become confused enough to call, and once on the phone with the fraudster, a sophisticated script of psychological manipulation begins.
How this scam works on the Best Buy Geek Squad brand
The fake invoice email typically arrives from a free webmail address (not @bestbuy.com or @geeksquad.com) but uses the Geek Squad logo. It cites a renewal for 'Geek Squad Advanced Security' or a similar plan name, with a high invoice total and an 'auto-renew cancellation' phone number.
When the victim calls, the 'Geek Squad agent' explains that a refund can only be processed through the victim's banking app. The agent then asks to install remote-access software — TeamViewer, AnyDesk, or similar — ostensibly to 'process the refund remotely'. Once the agent has screen control, they open the victim's banking app and instruct the victim to look away 'for security' while the agent transfers funds or harvests account details.
Some variants do not use email at all: a pop-up appears in the victim's browser claiming their PC is infected and displaying a Geek Squad or Best Buy logo with an urgent helpline number.
Common red flags
- Invoice email arrives from a Gmail, Yahoo, or other free provider — not @bestbuy.com
- The invoice amount is notably higher than any real Geek Squad plan cost — designed to alarm rather than inform
- You have no Best Buy account or Geek Squad subscription, yet receive a renewal notice
- The 'refund line' number in the email is not the official Best Buy customer service number (1-888-BEST-BUY)
- The agent asks you to install remote-access software to 'process' a refund
- You are asked to look away from the screen or told your 'refund confirmation' requires navigating your banking app
How to protect yourself
- Do not call the number in the email — if you are a genuine Geek Squad or Best Buy member, log in at bestbuy.com to verify your subscriptions under Account > Membership and Geek Squad
- Best Buy's real customer service can be reached at bestbuy.com/site/help-topics/contact-best-buy or by calling 1-888-BEST-BUY
- Never install remote-access software at the request of someone who contacts you unsolicited
- If you already installed remote-access software, close the application immediately, disconnect from the internet, and change passwords for your banking and email accounts from a separate device
- Mark the email as phishing in your email client and delete it
How to report it
- Report the scam email to Best Buy via their official contact page at bestbuy.com
- Report to the FTC at reportfraud.ftc.gov — this specific scam is well-documented by the FTC
- Report to your local FBI field office at ic3.gov if financial loss occurred
- If you lost money, contact your bank immediately and ask about a wire recall or fraud reversal
Frequently asked questions
Does Geek Squad ever contact customers by email about auto-renewals?
Best Buy and Geek Squad do send renewal reminders to customers with active Geek Squad memberships. However, genuine emails come from @bestbuy.com or @geeksquad.com — not free webmail accounts — and will not ask you to call a number to get a refund by providing remote access to your computer.
I installed the remote-access software. What should I do now?
Close the remote-access application immediately and disconnect from the internet. Change your banking, email, and other important passwords from a different device. Contact your bank to alert them of potential fraud. Report to the FTC and your local authorities.
I do not have a Geek Squad subscription. Why would they email me?
Scammers send these emails in bulk to millions of addresses, knowing that a percentage of recipients will have heard of Geek Squad or Best Buy and will be confused enough to call. The email is not targeted — it is a mass phishing attempt.
Can Geek Squad actually process a refund via remote access?
No legitimate company processes refunds by taking remote control of your computer and accessing your banking app. Any request to do this is a definitive sign of fraud.