What is a tech support scam?
A tech support scam tricks victims into believing their computer is infected or compromised, then charges them for unnecessary 'repairs' or gains remote access to steal data and money.
Last reviewed: 10 June 2026
Explanation
Tech support scams begin in several ways: a scary pop-up on a website displaying a fake virus alert with a phone number; an unexpected call from someone claiming to be from Microsoft, Apple, or an ISP; or, more recently, an email or text stating your account has been charged for a renewal and you should call to cancel.
Once contact is made, the 'technician' uses legitimate-looking tools — Windows Event Viewer, system logs showing normal but alarming-sounding entries, or remote monitoring software — to convince the victim that serious problems exist. They then offer to fix the issue for a payment, often in gift cards, or ask the victim to install remote-access software to 'fix the problem directly'.
With remote access, the real damage begins. Scammers may navigate to the victim's bank account, show them a fake balance that appears to have been 'accidentally' altered, and use the refund scam technique to extract further payments. They may install persistent malware, exfiltrate passwords, or lock files for ransom.
A key fact: Microsoft, Apple, Google, and your ISP will never proactively call you about a virus on your computer. Browser pop-ups cannot detect viruses. If you did not initiate the support call, hang up or close the browser tab.
Common red flags
- A pop-up on a website saying your computer is infected with a phone number to call
- An unsolicited call from someone claiming to be Microsoft, Apple, or tech support
- You are asked to download remote-access software (AnyDesk, TeamViewer) to receive support
- The caller shows you system logs and says alarming-sounding normal entries are infections
- Payment for support is requested via gift cards, wire transfer, or cryptocurrency
- You receive an email about a large subscription renewal you did not make, with a phone number to dispute it
What to do now
- Do not call numbers in pop-ups — close the browser tab (or force-quit if it will not close) and run a genuine antivirus scan
- If you gave remote access, disconnect from the internet immediately and run a full security scan
- Change passwords for any accounts that could have been visible during remote access
- If you paid, contact your bank or gift card issuer to attempt recovery
- Report to your national fraud authority and the software company being impersonated
Frequently asked questions
Can a website really detect a virus on my computer?
No. A web page in your browser has no access to your operating system or files. Pop-ups claiming to have detected malware are always fake, regardless of how convincing or frightening they look. They are designed to alarm you into calling the displayed number.
What if I already gave them remote access — what should I do first?
Disconnect from the internet immediately (pull the ethernet cable or disable Wi-Fi). This terminates their remote session. Then run a full antivirus scan from a trusted tool, change all your passwords from a different device, and check for any banking transactions you did not authorise.