Diff: Technical Support Scam
Comparing revision #1 (2023-06-14 03:47:27) with revision #2 (2026-06-22 07:34:31).
| Old | New |
|---|---|
A '''technical support scam''' is a fraud in which a criminal pretends to provide computer, software, device, security, banking, or customer support. The scammer tries to make the victim believe there is an urgent technical problem, then asks for payment, remote access, personal details, or financial information. |
|
Technical Support Scams are a form of fraudulent activity where scammers impersonate technical support representatives to deceive individuals into believing that their computers or devices have issues requiring immediate attention. These scams aim to exploit users' trust and lack of technical knowledge to gain access to their personal information, steal money, or install malicious software on their devices. This wiki page provides an overview of technical support scams, their common tactics, and how to protect oneself against them. |
|
The scam may start with a phone call, fake search result, fake advert, pop-up warning, text message, email, or compromised website. |
|
== Overview == |
|
Technical support scams typically involve scammers contacting potential victims through unsolicited phone calls, emails, pop-up messages, or fake websites. They often claim to be representatives of well-known technology companies, such as Microsoft, Apple, or antivirus software providers. The scammers use various tactics to create a sense of urgency, fear, or concern, coercing victims into providing remote access to their devices, purchasing unnecessary software or services, or divulging sensitive information. |
|
== Method == |
|
Ask the Police describes technical support scams as commonly involving an unsolicited call from someone claiming to work for a well-known technology company. The caller says the victim's computer is infected, faulty, hacked, or unsafe, then offers to fix a problem that does not exist. |
|
== Tactics Used == |
|
Common tactics include: |
|
# Cold Calling: Scammers make unsolicited phone calls, claiming to be from a reputable company, and inform the victim that their computer has been infected or compromised. They may use technical jargon to sound convincing and authoritative. |
|
# Pop-up Messages: Victims encounter pop-up messages while browsing the internet, warning them about a supposed security threat or virus infection on their device. These messages often instruct users to call a provided phone number for immediate assistance. |
|
# Fake Websites: Scammers create fake websites that resemble legitimate technical support sites, complete with logos and contact information. Victims may be directed to these websites through malicious ads or search engine results. |
|
# Remote Access: Scammers request remote access to victims' devices, claiming they need to diagnose and fix the reported issues. By gaining control of the device, scammers can install malware, steal personal information, or manipulate the system to convince the victim of a problem. |
|
# Payment Scams: Scammers convince victims to purchase unnecessary software, services, or subscriptions by claiming they are required to fix the reported issues. They may ask for payment through credit cards, wire transfers, or prepaid gift cards, making it difficult for victims to recover their funds. |
|
* Fake pop-up warnings with a phone number. |
|
* Claims that the computer is infected. |
|
* Claims that the bank account is at risk. |
|
* Requests to install remote access software. |
|
* Requests for card details, vouchers, bank transfers, or cryptocurrency. |
|
* Fake refunds for earlier support payments. |
|
* Use of legitimate remote administration tools for criminal access. |
|
== Protecting Yourself == |
|
To protect yourself from technical support scams, consider the following: |
|
Legitimate companies do not display pop-up warnings that require a person to call a phone number to remove a virus. |
|
# Be Sceptical: Exercise caution when receiving unsolicited communication claiming to be from technical support. Legitimate companies do not proactively reach out to customers in such a manner. |
|
# Verify the Identity: Ask for the caller's name, company, and contact information. Research the company independently using official websites or phone numbers to confirm their legitimacy. |
|
# Do Not Provide Remote Access: Never grant remote access to your device unless you initiated contact with a trusted technical support provider. |
|
# Beware of Pop-up Messages: Avoid clicking on pop-up messages, especially those claiming immediate security threats. Close the browser window or use task manager to end the program if necessary. |
|
# Use Trusted Sources: When seeking technical support, rely on reputable companies' official websites, contact information, or local authorized service providers. |
|
# Keep Software Updated: Regularly update your operating system, antivirus software, and other applications to ensure they have the latest security patches. |
|
# Report Scams: If you encounter a technical support scam, report it to your local authorities or appropriate consumer protection agencies. Provide them with any relevant information, such as phone numbers, email addresses, or websites used by the scammers. You can also publicly report scammers to the community forum [[Scammer.info]]. |
|
== Remote Access == |
|
Remote access is one of the highest-risk parts of the scam. Once connected, the scammer may view files, steal passwords, install malware, access online banking, change security settings, or make the victim believe harmless system logs are proof of infection. |
|
If remote access has been granted, the device should be disconnected from the internet and checked before further use. Passwords should be changed from a separate trusted device. |
|
== Payment Methods == |
|
Fraudsters often ask for payment by bank transfer, card, gift card, voucher, or cryptocurrency. Gift cards and cryptoassets are common because they are difficult to recover once sent. |
|
Some scams use fake invoices or subscription renewals. Others pretend to refund money, then trick the victim into sending money back. |
|
== Practical Examples == |
|
=== Fake Virus Pop-up === |
|
A browser window says the computer is locked and gives a support number. The number connects to a criminal call centre, not the operating system provider. |
|
=== Refund Scam === |
|
A caller claims the victim is due a refund for old support software. During the process, the caller persuades the victim to open online banking and send money. |
|
=== Business Helpdesk Impersonation === |
|
An employee receives a call from someone pretending to be internal IT. They are told to install a tool to fix a fake issue, giving the attacker access to the business network. |
|
== Reporting == |
|
In England, Wales, and Northern Ireland, victims can report fraud and cyber crime to Report Fraud. If bank details or payments have been shared, the bank should be contacted immediately. In Scotland, reports should be made to Police Scotland. |
|
== See Also == |
|
* [[Phishing]] |
|
* [[Scamming Techniques]] |
|
* [[Spam]] |
|
* [[Advance Fee Fraud]] |
|
== References == |
|
* [https://www.askthe.police.uk/faq/?id=ea404fa3-420e-f011-998a-6045bdcf9c56 Ask the Police: Tech support scams] |
|
* [https://support.microsoft.com/en-US/Office/protect-yourself-from-tech-support-scams Microsoft Support: Protect yourself from tech support scams] |
|
* [https://www.fbi.gov/how-we-can-help-you/scams-and-safety/common-frauds-and-scams/tech-support-scams FBI: Tech Support Scams] |
|
* [https://www.reportfraud.police.uk/ Report Fraud] |
|
* [https://www.ncsc.gov.uk/collection/phishing-scams National Cyber Security Centre: Phishing scams] |
|
[[Category:Fraud]] |
|
[[Category:Cyber security]] |