Practical money news for everyday Americans

The Money Front

Social Security · Medicare · Taxes · Banking · Cost of Living

Tech Support Pop-Ups: The Script Scammers Follow

A computer screen showing a security warning message
SmartScreen warnings Outlook. Photo: Software: Microsoft Corporation / Wikimedia Commons (Public domain).

You are reading a recipe or checking email when the screen locks up. An alarm blares from the speakers, a box labeled “Windows Security Alert” fills the display, and a robotic voice warns that your computer is infected and your banking passwords are being stolen. Do not shut down, it says. Call the toll-free number on the screen immediately.

Nothing is wrong with your computer. The pop-up itself is the attack, and everything that happens after you dial that number follows a script that plays out thousands of times a day across the country. Knowing the script in advance is the best defense, because each stage is designed to feel like rescue while working like robbery.

Stage one: the pop-up that will not close

The fake alert usually arrives through a hacked ad or a mistyped web address, not because anything on your machine is infected. It is built to be terrifying: flashing borders, countdown timers, logos stolen from Microsoft or Apple, sometimes a voice recording on a loop. It often expands to full screen and hides your mouse cursor so the machine appears frozen.

Here is the single fact that unravels the whole thing, straight from the Federal Trade Commission’s tech support scam guidance: real security warnings from real companies never include a phone number and never tell you to call anyone. Microsoft’s error messages do not take phone calls. Neither do Apple’s. A number on a security alert is a scam, every time, with no exceptions worth entertaining.

Stage two: the friendly technician and the remote connection

Call the number and a calm, professional voice answers, often claiming to be Microsoft, Apple, or a “certified partner.” The technician asks to connect to your computer remotely to diagnose the problem, walking you through installing legitimate remote-access software that scammers simply misuse.

Once inside, the show begins. The technician opens routine system logs full of harmless warnings and presents them as evidence of infection, foreign hackers, or “network intrusions.” The performance ends with a bill: hundreds of dollars for cleanup, or a multi-year “protection plan.” Payment is requested in ways real companies never demand, gift cards read over the phone, wire transfers, cryptocurrency, or increasingly a courier sent to collect cash or gold. The remote connection can do quieter damage too, from copied files to installed malware to a peek at your bank balance that tailors the next stage.

Stage three: the refund call and the bank impersonator

Paying once puts you on a list. Weeks or months later comes the follow-up: the company is being shut down, or owes you a refund, and just needs to connect to your computer to process it. The scammer then fakes a transfer error on screen, claims they refunded too much, and pressures you to send back the difference.

The most damaging variant escalates to impersonating your bank or a government agency. The caller warns that your accounts are compromised and your savings must be moved to a “safe account” while it is investigated. The Federal Trade Commission’s latest report to Congress on protecting older adults documents how these layered impersonation schemes have driven a surge in six-figure losses, often emptying retirement accounts one “protective transfer” at a time. No bank, and no agency, will ever ask you to move money to keep it safe.

Why older adults are targeted hardest

Tech support scams are unusual among frauds in how sharply they skew by age. FTC analysis of its fraud reports found that consumers 60 and over were about five times more likely than younger adults to report losing money to tech support scams, and the pattern has persisted in the agency’s reporting since. The scam is engineered for people who depend on their computer but do not feel confident fixing it, and who grew up in an era when a company calling to help was plausible.

What to do in the moment

If the pop-up appears: do not call, do not click, and do not panic about shutting down, whatever the screen says. Close the browser. If it will not close, force-quit it (Ctrl+Alt+Delete on Windows, Option+Command+Esc on a Mac) or simply hold the power button and restart. If the warning returns when the browser reopens, decline to restore your previous tabs. That is usually the entire “repair.”

If someone from a call like this is already connected to your machine, hang up and disconnect the computer from the internet. Then, from a different device if possible, change the passwords that matter most, starting with email and banking, and run the security software you actually installed. If you paid, contact the gift card issuer, your card company, or your bank immediately; speed is the only thing that occasionally claws money back.

Report it, even if you lost nothing

Every report sharpens the picture investigators use to shut these operations down, and the numbers that get published come only from people who speak up. Report the encounter at ReportFraud.ftc.gov, whether you lost money or just saw the pop-up. Then tell one other person about the script, ideally the relative who calls you for computer help. This scam survives on victims who have never heard how it goes; each person who knows the choreography is one more dead-end phone call for the people running it.


Comments

Leave a Reply

Your email address will not be published. Required fields are marked *