Fake Best Buy Order-Confirmation Phishing Email
Criminals send fake Best Buy purchase-confirmation emails for expensive electronics, panicking recipients into calling a fake support number or clicking a phishing link to cancel the supposed order.
Part of: Fake Order Confirmation Phishing Scams
Last reviewed: 7 June 2026
Best Buy is a leading electronics retailer and a natural target for fake order-confirmation phishing. The combination of high-value electronics (televisions, laptops, gaming consoles) and the existence of the Geek Squad subscription service creates multiple pretexts for alarming fake emails.
The fake order email appears in the same format as genuine Best Buy confirmations — showing the Best Buy logo, order number, and a high-value item — but arrives from a non-Best Buy address. The tactic mirrors the Geek Squad auto-renewal scam: the victim is panicked by an unexpected large charge and either calls a fake helpline or clicks a phishing link.
Best Buy sends genuine order confirmations from @bestbuy.com. They always include your full billing name, the shipping address on file, and an order number verifiable at bestbuy.com under your account's Order Status.
How this scam works on the Best Buy Geek Squad brand
The most common variant describes a large electronics purchase — a high-end laptop or a gaming console — totalling several hundred to over a thousand dollars. The email includes a fake order number and a customer service phone number to call if the purchase was not authorised.
Calling the number connects to a fraudster posing as a Best Buy agent. The agent 'confirms' the order exists and offers to cancel it — but says the refund can only be processed by accessing the caller's banking app remotely. Remote-access software installation is requested, and once the fraudster has screen access, they attempt to steal banking credentials or transfer funds.
A second variant uses a 'Cancel Order' link in the email that leads to a fake Best Buy sign-in page. Credentials entered there are captured and the attacker gains access to any saved payment cards on the Best Buy account.
Common red flags
- Sender address is not @bestbuy.com
- The email does not include your full billing name or the exact shipping address on your Best Buy account
- A phone number to call for cancellation — Best Buy's cancellation is done online at bestbuy.com or in the app
- Checking bestbuy.com directly shows no such order in your account
- An agent asks you to install remote-access software to 'process the refund'
- The 'Cancel Order' link leads to a domain other than bestbuy.com
How to protect yourself
- Go directly to bestbuy.com and check your Order Status — if the order does not exist, the email is fake
- Best Buy's real customer service can be reached at bestbuy.com or 1-888-BEST-BUY — never via a number in an unsolicited email
- Never install remote-access software at the request of someone who contacts you about an alleged order
- Enable two-factor authentication on your Best Buy account
How to report it
- Report phishing emails to Best Buy via bestbuy.com/site/help-topics/contact-best-buy
- Report to the FTC at reportfraud.ftc.gov
- If you installed remote-access software, close it immediately, disconnect from the internet, and change your banking and Best Buy passwords from another device
Frequently asked questions
How do I verify a Best Buy order email is genuine?
Log in directly at bestbuy.com and check Order Status. Real Best Buy emails come from @bestbuy.com and include your full billing name and delivery address.
The fake email has a very realistic Best Buy order number. Does that mean it is real?
No. Scammers generate plausible-looking order numbers. The only way to verify is to check your account at bestbuy.com directly — not via any link in the email.