Fake Software Update Scams
Bogus 'update required' prompts that install malware instead of genuine updates.
Last reviewed: 1 June 2026
What this scam is
Fake software update scams mimic update prompts for your browser, operating system, or popular software (like media players), tricking you into downloading malware disguised as an update.
How it works
A site or popup says your software is outdated or insecure and offers an 'update'. Downloading and running it installs malware, adware, or a remote-access tool rather than any real update.
Common red flags
- Update prompts from a web page rather than the software itself
- Urgency and security scare language
- Download of an .exe or app from an unfamiliar site
- Mismatched branding or domains
Sanitized example messages
Illustrative, sanitized examples. Personal details are replaced with placeholders such as [phone number] and [fake link].
Your media player is outdated. Download the critical update now to keep watching: [fake link].
Payment methods used
- Account/data theft
- Scareware payments
Who is usually targeted
- General users
What to do immediately
- Update software only through the app itself or the official site
- Don't run downloads from update popups
- If you installed one, run a security scan and seek trusted help
Evidence to preserve
- The popup/site URL
- Any file downloaded
- Screenshots
Where to report it
- Action Fraud (UK) — UK national fraud & cybercrime reporting centre
- FTC ReportFraud (US) — US Federal Trade Commission fraud reports
- FBI IC3 (US) — US Internet Crime Complaint Center
- Scamwatch (Australia) — Australian competition & consumer reporting
- Your bank's fraud line — Use the number on the back of your card or in your banking app — never a number the caller gives you
Always verify reporting routes and emergency contacts on the official government or agency website for your country.
Frequently asked questions
How should I update software safely?
Use the software's built-in update feature or download from the official website. Be suspicious of update prompts that appear on web pages or push you to download and run a file.