Tech support scams are some of the oldest and most persistent, and they’re getting more sophisticated.

These scams usually involve a fraudster posing as a technology company and aim to convince you that your device, usually a computer or laptop, has a virus or malware or other security threat. As awareness of these scams has increased, fraudsters are driven to use different tactics to trick people into handing over money.

Read on to learn about the latest tactics used by scammers and how to avoid them.

Sign up for scam alerts

Our emails will alert you to scams going around and provide practical advice to stay one step ahead of fraudsters.

Sign up for scam alerts

This is how tech support scams work

There are two main ways tech support scammers usually try to contact potential victims – through phone calls or by tricking you into clicking on a web pop-up.

No matter how they try to reach you, the story they spin is almost always the same. Microsoft and the Microsoft Windows brand remain the most imitated, according to reports to Action Fraud, but fraudsters also impersonate Dell, Apple and Google.

The caller’s real number may be masked (known as spoofing) so that it appears on your phone as a business or other number – preventing you from knowing the true origin of the call.

The caller claims that you either need to renew a software license to continue using your device or certain software, such as Microsoft Office. Or they warn you that your device has malware or is under attack from another security threat.

The second way tech support scammers can reach you is through fake pop-ups that can appear on websites. While browsing the Internet, a pop-up appears on the screen warning that the device has a problem. It’s fake, but if you click the buttons in the popup, they can open windows on your screen that can make it look like your device has been shut down, which can trick you into thinking a virus is preventing you from using it .

Often a link or number will appear that you can contact for help. This is a direct line to scammers who will go through the same steps to steal your money.

Both of these approaches link people to sharing payment details, which can snowball into victims having thousands of pounds stolen from their bank accounts.

The scammers often go on to trick victims into downloading screen sharing software allowing them to see your screen or even take control of your device.

How Tech Support Scam Tactics Get Insidious

Many of the cold calling scams are random, calling numbers with the hope that a few people might answer and fall for the scam. Sometimes they may have a list of numbers and associated names to target, but little else.

But scammers are getting better at social engineering, where they use a mix of personal information about you that they’ve collected online and psychological strategies to convince you that the scam is real.

Some of the ways they do this include:

1. Collect detailed information about you and your device. Technical support cold callers often know their victims by name. But victims have told us that scammers seem to know specific information about the devices they’re using, such as models or serial numbers, and what software they’re using. They also know home addresses and other personal information such as passwords, who you bank with and even the names of relatives. They probably got your details from online data leaks, or from a phishing email, social media or messages you may have responded to in the past. Be careful if a caller tries to prove they are legitimate by listing all the information they know about you.

2. Storage of calls and fake messages. Once they have victims on the phone, tech support scammers may send text messages or other messages as part of their story to try to convince you that the scam is real. They may send you a message with additional security warnings or fake messages assuring you that your device is being updated or fixed. Messages may also prompt you to carry out instructions to proceed towards giving fraudsters access to your device or transferring funds. Another tactic is to transfer your call to “colleagues” in other departments, or even to people claiming to be from your bank or the police. Introducing other people who pose as experts or authority figures continues to create the illusion that you are in a serious situation. When you get multiple messages telling you that there is an urgent threat, it can be more convincing.

3. False ads on search engines. Fraudsters publish fake ads for tech support services that may appear in web search results. They are designed to target victims who search online for answers to problems with their computers or other devices. When you ask a search engine for help with a technical problem you’re having, certain keywords can lead to scam ads being displayed. These ads may lead to professional websites that appear to offer IT services, but if you make contact, you’ll find criminals looking to take advantage of you.

How to protect yourself from tech support scams

1. Ignore phone calls or messages claiming to be from tech companies like Microsoft, Google, and Apple. Technology companies never call customers to warn of security threats or to ask for money, passwords or security codes, no matter what the caller tells you to convince you otherwise.
2. Never let anyone remotely control your personal devices. There is very little reason for anyone to need to do this.
3. Never allow anyone to access or view your financial accounts. Scammers will often ask you to share your device screen so they can see personal or banking details, claiming to offer to help you with a transaction when in reality they are manipulating you so they can steal your money.
4. If you need technical assistance, contact trusted experts. If you have a problem with your computer or other device, do not accept help from someone who has contacted you unsolicited. Also, be wary of online ads that offer technical support.
5. Keep your devices updated. Install the latest software updates when they are released to protect your devices from the latest security threats.
6. Activate pop-up blocking in your browser. Browsers such as Edge, Chrome, Firefox and Safari offer options in the settings to block pop-ups, protecting you from malicious messages.
7. Use antivirus software with pop-up blockers. The chance of getting malware is reduced if you install anti-virus software, run regular system scans and enable pop-up blocking.

• Read more: the most common types of phone scams and how to avoid them

What to do if you think you’ve been scammed

If you’ve been contacted by someone claiming to be from an organization, and something doesn’t feel right, you can end the call or chat at any time.

If you’ve lost money to a tech support scam, call your bank or contact the affected accounts directly. If you transferred the money via bank transfershould the bank be able to reimburse you, in whole or in part, depending on how much was stolen.

Report it to Action Fraud online or by calling 0300 123 2040. If you live in Scotland, you can report the scam to the police by calling 101.