
How to Spot a Tech-Support Scam Before It Costs You
Scammers are calling, popping up fake alerts, and even showing up in Google ads, targeting everyone from West Palm Beach retirees to small-business owners. Learn the exact red flags, the psychology behind each trick, and the concrete steps to stop them cold.
- What You Need
- 1. Understand Why These Scams Work So Well
- 2. Recognize the Four Main Attack Vectors
- Fake Browser Pop-Ups
- Cold Calls Claiming to Be Microsoft, Apple, or Your ISP
- Malicious Search Ads
- Fake Security Software Alerts
- 3. Learn Their Script Step by Step
- 4. Cut Off the Scam in Real Time
- 5. Harden Yourself Against Future Attempts
- Common Mistakes
- Bottom Line
- Worried your business is one click from a breach?
- Frequently asked questions
- Does Microsoft ever call you about a problem with your computer?
- What should I do if I already gave a scammer remote access to my computer?
- Are those full-screen browser pop-ups saying my computer is infected real?
- Why do tech-support scammers always ask for gift cards?
- Can businesses be targeted by tech-support scams, not just individuals?
- How do I tell a real tech-support call from a scam?
TL;DR: Tech-support scams use fake error alerts, cold calls, and remote-access software to steal your money and your data. Every single one follows a predictable script. Learn that script and you become practically immune to it.
What You Need
No tools to download, nothing to buy. You just need:
- A basic understanding of how legitimate support actually works (covered below)
- A healthy suspicion reflex when anything feels rushed or alarming
- A plan for who to actually call when something goes wrong, like your local computer repair shop or a real remote support service
- Two minutes to read this all the way through
That is genuinely it. These scams are not sophisticated. They are psychological. Once you see the mechanics, they lose almost all their power.
1. Understand Why These Scams Work So Well
Before you can spot the tricks, you have to understand the lever scammers pull. It is fear. Specifically, fear of losing your files, your bank account, or your identity, all RIGHT NOW if you do not act.
Scammers manufacture urgency from nothing. A flashing red screen that says "YOUR COMPUTER IS INFECTED. CALL MICROSOFT NOW" feels terrifying if you have never seen one before. Your brain switches into crisis mode and skips the skepticism.
That is the whole game. Create panic, introduce a fake solution, collect payment before the panic fades.
Knowing this puts you ahead. The moment you feel that spike of alarm, treat it as a signal to slow down, not speed up.
2. Recognize the Four Main Attack Vectors
Scammers reach you through four main channels. Each one looks slightly different but leads to the same playbook.
Fake Browser Pop-Ups
You land on a sketchy website or click a bad ad. Suddenly your browser fills with a full-screen alert. Loud alarm sounds sometimes play. The page claims to be from Microsoft, Apple, or Norton. It says your PC is locked or infected and gives you a phone number to call.
Real talk: Microsoft and Apple do NOT push phone numbers through your browser. Ever. No legitimate security software does this either. If a webpage is telling you to call a number, it is a scam. Period.
To close it: press Alt+F4 on Windows or Command+Q on Mac. If it will not close, open Task Manager (Ctrl+Shift+Esc) and kill the browser process. Your computer is fine.
Cold Calls Claiming to Be Microsoft, Apple, or Your ISP
You get a call. The person says they are from "Windows Technical Department" or "Apple Support" and they detected errors on your machine. They sound professional. They might even read you fake error codes.
Microsoft has been crystal clear on this: they do not make unsolicited calls to fix your computer. Neither does Apple. Neither does your internet provider, unless you have an active open ticket with them.
If you did not initiate the contact, hang up. You do not owe them an explanation.
Malicious Search Ads
This one catches even tech-savvy people. You Google "HP printer support" or "Lenovo customer service." The first result looks official, has the brand logo, and the URL looks close to right. You call the number. Scammer.
These are paid ads that impersonate real companies. Look closely at the URL before clicking. The real HP support is hp.com. If you see hp-support-helpdesk.com or anything with extra words stuffed in, close it.
When in doubt, go to the manufacturer's official website by typing it directly into the address bar, not through a search result.
Fake Security Software Alerts
You get an email or see a pop-up saying your antivirus subscription expired. Click here to renew. The link takes you to a site that looks identical to Norton, McAfee, or Windows Defender. You enter your credit card. Gone.
Always renew software through the software itself or the company's official website you type in manually.
3. Learn Their Script Step by Step
Once contact is made, virtually every tech-support scam follows the same steps. Knowing these makes the scam obvious in real time.
Step one: Establish credibility. They claim to be from a brand you trust. Microsoft, Apple, Google, your bank, Best Buy's Geek Squad. They may know your name or city, often pulled from data broker sites.
Step two: Show you "proof" of infection. They will ask you to open Event Viewer on Windows (Win+R, type eventvwr). Event Viewer always shows warnings and errors. They are normal. Scammers present them as critical infection evidence. They are not.
Step three: Request remote access. They ask you to download AnyDesk, TeamViewer, or a similar tool. Once you grant access, they own your screen. Legitimate techs do use remote access software, but only after you initiated the contact with them. A real remote support session starts with you calling.
Step four: Create more fear. They pretend to "find" viruses, often by opening a command prompt and running harmless-looking commands, then presenting the output as devastating.
Step five: Demand payment. Usually gift cards (Google Play, iTunes, Amazon), wire transfer, or cryptocurrency. They push for gift cards because they are untraceable and non-refundable.
If anyone ever asks you to pay for tech support with a gift card, that is a 100% scam. No exception.
Worried your business is one click from a breach? Get a security review
4. Cut Off the Scam in Real Time
If you realize mid-call or mid-session that something is wrong, here is what to do right now.
If you have not given remote access: hang up. Block the number. Done.
If you gave remote access but caught it early: disconnect your internet immediately. Unplug the ethernet cable or turn off Wi-Fi. Then shut down the computer. Do not let it reconnect until a real tech has looked at it. You can schedule a same-day look at our computer repair shop or get help via remote support from a trusted source.
If you paid with a credit card: call your card issuer immediately and dispute the charge. Credit cards have the best fraud protection.
If you paid with a gift card: call the gift card company right away. Success rates for recovery are low but not zero. Report it to the FTC at ReportFraud.ftc.gov.
If you handed over any passwords or banking info: change passwords immediately starting with email and banking. Enable two-factor authentication everywhere. Notify your bank.
5. Harden Yourself Against Future Attempts
Spotting the scam once is great. Being basically immune forever is better.
Tell the people in your life who are most at risk. Older family members are disproportionately targeted. A five-minute conversation about "they will never call you out of nowhere" can save thousands of dollars.
Use a password manager so that even if a scammer gets your old password from a breach, it is already rotated out.
Keep real antivirus software active. Windows Defender, built into Windows 10 and 11, is genuinely solid and free. It will not pop up a phone number.
If you own a business in Palm Beach County or the Treasure Coast, your risk profile is higher because employees are targets too. Real business cybersecurity means training your team, not just installing software. Our managed IT services include exactly this kind of threat awareness training.
For backing up your data so a scammer who does get in cannot hold it hostage, look at what proper backup and disaster recovery actually involves. Ransomware and tech-support scams often go hand in hand.
Common Mistakes
Staying on the line to argue. You will not convince a scammer they are wrong. Every second you stay on the line is a second they work on breaking down your resistance. Hang up.
Assuming caller ID means legitimacy. Spoofed caller ID is trivial. A number showing "Microsoft Corporation" or even your own bank's real number means nothing.
Thinking it only happens to non-technical people. It happens to IT professionals too. The social engineering is the attack, not some technical exploit. Embarrassment is not a reason to avoid reporting it.
Not reporting it. If you were targeted, even if no money changed hands, report it to the FTC and to the FBI's Internet Crime Complaint Center at ic3.gov. Reports directly influence federal investigations.
Trusting search results for support numbers without verification. Always navigate directly to the manufacturer's official site. Type the URL yourself.
Waiting to act after giving access. Every minute a scammer has your screen, they are potentially installing backdoors or exfiltrating files. Pull the plug on your internet connection immediately.
Bottom Line
These scams are not technically clever. They are psychologically aggressive. They create fake emergencies and offer fake rescues. Now that you know the script, you can spot it in the first thirty seconds of a pop-up or a phone call.
Slowing down is your best defense. Scammers cannot operate without your panic.
If you or someone you know thinks they may have already been compromised, or if you just want a real human to verify that your machine is clean, our team at Fix My PC Store in West Palm Beach is here. Book an appointment or reach out and we will give you a straight answer with zero pressure.
Worried your business is one click from a breach?
Get a straight-talk security review from a local team that has cleaned up the aftermath more times than we'd like.
Frequently asked questions
Does Microsoft ever call you about a problem with your computer?
No. Microsoft does not make unsolicited outbound calls to report errors or infections on your PC. If you receive a call claiming to be from Microsoft, Apple, or any major tech company that you did not initiate, it is a scam. Hang up without engaging further.
What should I do if I already gave a scammer remote access to my computer?
Disconnect from the internet immediately by unplugging ethernet or turning off Wi-Fi, then shut down the computer. Do not reconnect until a real technician has reviewed the machine for backdoors or installed malware. Also change your important passwords from a separate, clean device right away.
Are those full-screen browser pop-ups saying my computer is infected real?
No. Legitimate security software and operating systems do not display a phone number in a browser pop-up and tell you to call it. These are fake alerts designed to create panic. Press Alt+F4 or use Task Manager to close the browser, and your computer will be fine.
Why do tech-support scammers always ask for gift cards?
Gift cards are untraceable and almost entirely non-refundable, which makes them ideal for fraudsters. Once the card code is read over the phone, the money is effectively gone. No legitimate business, government agency, or tech company will ever ask you to pay with gift cards.
Can businesses be targeted by tech-support scams, not just individuals?
Absolutely, and businesses are often higher-value targets because employees may have access to financial accounts, sensitive data, or company networks. Scammers sometimes pose as IT vendors or software providers. Employee awareness training and managed IT oversight are the most practical defenses.
How do I tell a real tech-support call from a scam?
The simplest rule: if you did not initiate the contact, treat it as suspicious. Real support calls happen because you opened a ticket or scheduled an appointment. If someone calls you out of nowhere claiming to have detected a problem on your machine, that is the scam pattern, regardless of how official they sound.