Spot a Tech Support Scam Before It Hooks You: 6 Red Flags and What to Do

Learn to spot a tech support scam fast: 6 red flags that expose fake alerts, cold calls, and phony support pages before handing over access or money.

I was halfway through a video call when a blaring alarm flooded my screen and a banner declared that Windows had detected critical infections — complete with a toll-free number to call immediately. My stomach dropped before my brain took over. Tech support scams are engineered to produce exactly that reaction, because panic is what makes them work.

According to the FTC’s consumer guidance on tech support scams, these schemes cost Americans hundreds of millions of dollars each year. The reassuring part: once you know how to spot a tech support scam, the tactics become obvious — and you can shut them down in seconds.

Quick Answer

A tech support scam uses a pop-up alarm, unsolicited phone call, or fake error page to convince you your device is infected. Microsoft, Apple, and Google never contact you unprompted about viruses. Hang up or close the tab, then run a free scan with Windows Defender or Malwarebytes.

What Are the Three Types of Tech Support Scams?

Most attacks arrive one of three ways. Knowing the delivery method makes the red flags much easier to spot.

Scam type How it arrives Immediate giveaway
Fake pop-up alert A website triggers a full-screen alarm with a toll-free number Real OS errors never include a phone number
Unsolicited phone call Caller claims to be Microsoft, Apple, or “Windows Support” Legitimate companies never call you about viruses unprompted
Fake search ad Paid ad mimics the official support page for a brand URL doesn’t end in the brand’s real domain

All three methods share the same end goal: get you on a call, convince you to hand over remote access, or pay for fake “cleanup” software.

How Do I Spot a Tech Support Scam in the Moment?

Run through these six checks whenever something feels off. Most scams fail on the very first one.

1. The Alert Includes a Phone Number

Real error messages from Windows, macOS, or any browser never display a phone number. The moment you see a toll-free number urging you to “call immediately,” you’re looking at a scam. Close the tab without dialing.

2. Someone Contacted You First

Legitimate tech companies do not make unsolicited calls to warn you about viruses or account compromises. If you receive an unexpected call from “Microsoft Support” or “Apple Security,” hang up without engaging. Scammers routinely spoof real Microsoft and Apple caller-ID numbers to appear more convincing.

3. The Page or Alarm Won’t Close

A frozen browser with a looping alarm is a scare tactic, not a real system event. Press Alt+F4 on Windows or Command+Q on Mac to force-quit the browser. If it won’t respond, open Task Manager (Ctrl+Shift+Esc) and end the browser process — the “emergency” disappears instantly.

4. They Ask You to Install Remote Access Software

Once on a call, scammers direct you to download AnyDesk or TeamViewer so they can “diagnose” your machine. They then open Windows Event Viewer — which shows harmless warnings on any healthy PC — and present those entries as proof of infection. On my freshly installed Windows 11 machine, Event Viewer listed 47 warnings straight out of the box. Every one of them was normal.

5. Payment Is Requested by Gift Card or Wire Transfer

Legitimate companies bill through secure online portals, not over the phone. Any request for gift cards, wire transfer, Zelle, or cryptocurrency is a definitive sign of a scam — without exception.

6. The URL Doesn’t Match the Real Brand

Before clicking a search result or support link, check the browser address bar. Domains like microsoftsupportcenter.net or apple-security-alert.com are not owned by Microsoft or Apple. Real Microsoft pages end in microsoft.com and real Apple pages end in apple.com.

If even one of these six signs appears, stop — the combination of urgency, unsolicited contact, and unusual payment demands has no legitimate use case.

What Should I Do When a Scam Targets Me?

If You See a Pop-Up or Fake Alert

  1. Do not call the number on screen.
  2. Force-quit the browser with Alt+F4 or Task Manager.
  3. Run a free scan with Windows Defender or follow this malware removal walkthrough to confirm nothing installed itself.
  4. Clear your browser cache (Ctrl+Shift+Delete) in case a rogue extension triggered the alert.

If You’re on the Phone With a Scammer

  1. Hang up without explaining yourself — engagement gives them more time to manipulate you.
  2. Block the number immediately.
  3. Report it at ReportFraud.ftc.gov.

If You Already Gave Them Remote Access

  1. Disconnect from the internet immediately — pull the cable or toggle Wi-Fi off.
  2. From a separate device, change passwords for email, banking, and any accounts saved in your browser.
  3. Enable two-factor authentication on all important accounts right away.
  4. Run Windows Defender Offline Scan: Settings → Windows Security → Virus & threat protection → Scan options → Microsoft Defender Offline scan.
  5. If you shared financial details, contact your bank and follow this identity recovery guide for the full response plan.

Pro tip: Turn on Tamper Protection before anything goes wrong: Settings → Privacy & Security → Windows Security → Virus & threat protection settings → Tamper Protection (toggle On). This blocks unauthorized software — including tools scammers try to install — from disabling Windows Defender.

Troubleshooting tip: If your browser is completely frozen on a scam page, open Task Manager (Ctrl+Shift+Esc), find your browser under Apps, right-click it, and choose End Task. When you reopen the browser, close the previous-session tab before anything reloads.

Fast action after remote access matters: the sooner you disconnect and rotate passwords, the smaller the window scammers have to use what they captured.

Common Mistakes to Avoid

  • Calling the number “just to check.” Engaging makes you an active target. The number is always fake — there is nothing to verify by calling.
  • Trusting caller ID alone. Scammers spoof real Microsoft and Apple phone numbers routinely. A matching caller ID proves nothing about who is actually on the line.
  • Paying to “cancel” the service. After one payment, scammers often call back claiming a refund is owed, then walk you into sending even more money.
  • Not changing passwords after remote access. Even if the scammer “found nothing,” they may have silently copied saved credentials from your browser while on screen.
  • Letting embarrassment delay action. These scams catch intelligent people every day. Report immediately to the FTC and your bank — every hour of delay helps only the scammer.

The most common thread across scam reports is the same: the victim felt rushed. Slow down, run the six-flag checklist, and the scam has nowhere to go.

Frequently Asked Questions

Can a pop-up actually lock my computer?

No — a webpage can go full-screen and loop audio, but it cannot lock your operating system. Alt+F4 or Task Manager always breaks the illusion. The first time I hit one of these pages, I was convinced my PC had crashed; Alt+F4 cleared it in under two seconds.

Is it safe to use my computer after seeing a fake alert?

In most cases, yes. The pop-up itself rarely installs anything — its only job is to scare you into calling. Run Windows Defender after closing the browser; if the scan is clean, you’re fine and can continue working normally.

What if a family member already paid the scammer?

Call the bank or card issuer immediately to dispute the charge or freeze the card. If they paid by gift card, contact the issuer’s fraud line — some amounts are recoverable if you act within hours. Then change all passwords on any account the scammer may have viewed during remote access.

How do I tell a scam email from a real Microsoft security alert?

Real Microsoft security emails come from @microsoft.com addresses and link only to microsoft.com pages — never to a phone number. When in doubt, go directly to account.microsoft.com to check your security alerts. You can apply the same pattern recognition used to spot phishing emails across any brand.

These four questions cover the moments people freeze up most — bookmark this page so you can run through them the next time something suspicious lands on your screen.

Conclusion

Tech support scams run entirely on urgency and manufactured fear — remove either and the con collapses. Keep three rules front of mind: error messages never include phone numbers, real companies never call you unprompted about viruses, and no legitimate payment request ever involves gift cards or wire transfers. Share this guide with anyone who might be a target — awareness is the one defense these scams have no answer for.