Skip to content
GoDesk
Back to BlogGuide

Tech Support Scam: Simple Steps to Prevent Remote-Access Fraud

GoDesk Editorial Team10 min read
Tech Support Scam: Simple Steps to Prevent Remote-Access Fraud

Getting a scary message about 'your computer is infected' or a stranger asking to 'quickly remote in' is a common pain. You want to help an elderly relative, fix your own machine, or accept help from a vendor — but you don’t want to hand co…

Getting a scary message about 'your computer is infected' or a stranger asking to 'quickly remote in' is a common pain. You want to help an elderly relative, fix your own machine, or accept help from a vendor — but you don’t want to hand control to a scammer. This guide explains what a tech support scam looks like and, step‑by‑step, how non‑technical users can prevent being tricked into granting dangerous remote access.

What is a tech support scam — in plain English

A tech support scam is when someone pretends to be a legitimate technician (from Microsoft, your ISP, your bank, etc.) to get you to run diagnostics, install software, or give remote access to your computer. The goals vary: steal passwords, install malware, run cryptojackers, or coerce payments. Scammers use phone calls, pop‑up web pages, or phony support emails to create urgency and fear.

They often ask you to install remote control software (TeamViewer, AnyDesk, Chrome Remote Desktop, or something less common) and then ask you to show bank accounts, hand over authentication codes, or pay for 'fixes' via wire transfer, gift cards, or cryptocurrency. The underlying risk isn't the software itself — it's who is on the other end and what permissions you give them.

How scammers contact you and common red flags

Scammers have a few typical approaches. Recognizing the red flags is the fastest way to stop a scam before it starts. If any of the following happen, stop and verify before proceeding.

  • Cold phone calls: Unsolicited calls claiming to be from Microsoft, Apple, your ISP, or a well‑known company. They often use urgent language: "Your PC is infected — we need access now."
  • Pop‑up warnings: A browser page that looks like a system alert saying your computer is infected and gives a phone number. Close the browser — don’t call the number.
  • Emails or chat messages: Messages that look official but ask you to click a link or install remote‑control software immediately.
  • Requests for payment methods: Any request to pay with gift cards, wire transfers, or cryptocurrency is a strong scam indicator. Legitimate support teams invoice through corporate billing systems or take card payments online, not gift cards.
  • Pressure and secrecy: "Do not tell anyone" or "If you hang up, your account will be deleted" — both manipulative tactics to prevent verification.

    • Before you grant remote access: a simple verification checklist

    If someone asks to remote into your machine, follow this short checklist. Each item is something you can do without technical knowledge.

    1. Ask how they reached you. Legitimate support rarely calls unexpected personal numbers. If it was an incoming cold call, be skeptical.
    2. Get their company name, employee name, and badge ID. Then hang up and call the company back using a phone number from the company’s official website — not the number they gave. If support is from your ISP or bank, use the number on your bill or on the printed card. If it’s software support, use the contact listed on the vendor’s official site.
    3. Never allow remote access because someone says so. A trustworthy technician will understand if you want to verify identity first.
    4. Do not give codes over unsolicited calls. Many remote‑control apps use one‑time session codes. If you didn’t initiate the support request through the vendor, do not hand over the code.
    5. Check official support channels. Look for notices on the company’s website or social media if there’s a widespread issue. For general remote‑access safety and how remote access works in practice, see our guide on how-remote-access-works and the practical steps in how-to-give-someone-remote-access.

      6. Safe ways to give someone access — limit scope and time

      If you decide to allow a legitimate technician or a trusted friend to help remotely, choose a method that minimizes risk. The key rules are: use temporary sessions, watch what they do, and revoke access immediately after.

      • Prefer built‑in one‑time tools: Windows Quick Assist (built into Windows 10/11) lets a helper connect through a one‑time code you generate and see everything in a prompt. Chrome Remote Desktop creates PIN‑protected sessions and can be used for one‑off assistance. These are better than installing unknown third‑party executables from an unsolicited link.
      • Use session codes and watch the screen: If you use TeamViewer or AnyDesk (both common and user‑friendly), make sure the session code is generated on your screen and only shared by you during the call. TeamViewer is widely used in enterprise support (current long‑running major version family is TeamViewer 15.x), and AnyDesk offers fast, low‑latency sessions. Both are legitimate — but a session code must be shared only after you have verified the caller's identity.
      • Grant view‑only if possible: Some tools offer view‑only or limited control. If the helper only needs to guide you through steps, choose view‑only so they cannot type or install software.
      • Never hand over admin credentials or 2FA codes: You should not give them your passwords or authentication codes. If they need admin rights to run a diagnostic, create a temporary account and delete it afterward or supervise every change.
      • Use reputable tools and avoid unknown executables: If a caller insists you download a specific program, verify that program’s name and website independently. Prefer mainstream, vetted tools (Quick Assist, Chrome Remote Desktop, TeamViewer, AnyDesk). If you want a self‑hosted option to avoid third‑party servers, see our self‑hosted remote desktop guide.
      • Record the session if possible: If you’re comfortable, use your phone to record the screen and audio. This creates a timestamped record of what occurred.

        • During the session — what to watch and what to do

        Stay actively involved while someone is controlling your machine. You don’t need technical skills to do the following:

        • Watch the cursor: Make sure the helper is doing what they said they would: running a specific diagnostic, visiting a particular official site, or opening Device Manager. If they open your bank website or password manager, immediately terminate the session.
        • Ask for explanations: If they say "fixing the registry" or "editing services," ask them to explain each step before they do it. Genuine technicians will explain and be patient.
        • Refuse software installs you didn’t request: If they try to install
          • toolbars, 'optimizers', or crypto‑mining software, end the session and uninstall anything they placed. Do not accept remote control to "boost" performance; that’s a classic scam move.
        • Check task manager and downloads folder: After any install, look for unfamiliar executables in Downloads and unfamiliar startup entries. If you see new items, take note of filenames for later scanning.
        • Limit file transfers: Avoid sending documents with passwords or personal data. If a file needs to be shared, use a secure, reputable file transfer service and remove the file after the issue is resolved.

          • After the session — clean up and lock things down

          Scammers sometimes wait until after a session to extract value. Do these steps immediately after a legitimate session — especially if it was with someone new to you.

          1. Terminate and uninstall remote software: End the remote connection and use Control Panel > Apps (Windows) or Applications > Uninstall (macOS) to remove any remote‑access programs you installed for the session. If the tool is something you plan to keep (e.g., for regular family support), set it to require explicit permission for each session.
          2. Change passwords and revoke tokens: If you shared any account passwords, change them. If you used authenticator apps or hardware tokens, revoke backup codes and reissue them if you suspect exposure.
          3. Check bank and credit accounts: Look for unfamiliar transactions. Contact your bank if anything looks suspicious and ask them to block or monitor charges. Don’t rely solely on reimbursements — catch fraud early.
          4. Run a malware scan: Use a reputable antivirus and an on‑demand scanner (Malwarebytes, Windows Defender Offline) to check for persistence mechanisms, unknown services, or scheduled tasks the helper may have left behind.
          5. Review startup items: On Windows, open Task Manager > Startup and disable unknown entries. On macOS, check System Settings > Users & Groups > Login Items.
          6. Audit recent installs: Check your Downloads folder and the system’s installed programs list for anything unfamiliar and uninstall it.

            7. If you discover you were scammed — steps to recover

            If you believe you gave access to a scammer, act quickly. The faster you respond, the better the outcome.

            1. Cut remote access immediately: Terminate the session, change any software‑generated remote codes, and uninstall the remote software.
            2. Change passwords from a known good device: Use a different, trusted device to change your passwords and revoke sessions (e.g., log out all sessions on Gmail, bank sites). Do not change passwords on the compromised machine until you have scanned it.
            3. Contact your bank or payment provider: Report unauthorized charges and request holds or reversal if needed. If you paid via gift cards, contact the retailer — although gift cards are often unrecoverable, reporting quickly can help.
            4. Report the scam: In the U.S., file a report with the FTC (ReportFraud.ftc.gov). In other countries, contact your local consumer protection authority or national cybercrime unit. Also report the incident to the software vendor used in the scam (TeamViewer, AnyDesk, etc.) — they often collect abuse reports at their support pages.
            5. Consider professional help: If the attacker had admin access, consider a professional clean or a system reinstall. At a minimum, back up important files, wipe the device, reinstall the OS, and restore from known‑good backups.

              6. Tools and choices — what’s safer for non‑technical users?

              There’s no perfectly safe tool — safety comes from process. That said, some options are friendlier to non‑technical users because they default to temporary access and clear consent.

              • Windows Quick Assist: Built into Windows 10/11, generates a one‑time code and doesn’t require installing third‑party software. Good for one‑off help.
              • Chrome Remote Desktop: Free, cross‑platform, tied to your Google account, and good for temporary remote help when you explicitly sign in and enable access.
              • TeamViewer / AnyDesk: Widely used, feature‑rich, and dependable for longer support sessions. They can be used safely if you follow the rules above — temporary codes, verified caller identity, and careful permissioning. TeamViewer is broadly used in enterprise environments (TeamViewer 15.x family is common in many orgs); AnyDesk is known for low‑latency connections that are useful on slow links.
              • Self‑hosted solutions: If you or your family are comfortable with a more technical setup, self‑hosting remote access eliminates reliance on third‑party relay servers. See our self‑hosted remote desktop guide for details and trade‑offs.

                • If you want a lightweight, non‑commercial option to try, consider tools that allow short‑lived sessions or require local approval for every connection. For those wanting to try GoDesk, you can get the app at /download and review pricing and self‑hosting options at /pricing. We don’t claim one tool fits every case — pick what you understand and can verify.

                Quick checklist you can print or read aloud

                • If you didn’t request support, hang up and call the company back via their official website.
                • Never pay via gift card or wire transfer on the spot.
                • Use built‑in one‑time tools (Quick Assist, Chrome Remote Desktop) where possible.
                • Generate session codes yourself and share them only after verification.
                • Watch the session, record it if you can, and uninstall remote tools when done.
                • Change passwords and scan for malware after the session.

                  • Final thoughts

                  Tech support scams rely on urgency and confusion. A calm, simple verification process — verify identity, use one‑time codes, limit permissions, and clean up afterward — protects non‑technical users in most cases. If you’re managing support for family members, write down the steps above or keep this page handy so a trusted helper can follow a known process.

                  For a safe walkthrough on how to share remote access correctly, pair this advice with our step‑by‑step how to give someone remote access guide. When you’re ready to try a tool you trust, download GoDesk at /download or compare pricing and hosting options at /pricing.

                  Get GoDesk

                  Ready to try it yourself?

                  Free for 30 devices, no credit card. Up and connected in two minutes.

                  Download GoDesk free
                  All articles
                  MORE READING

                  More articles

                  Technical

                  Remote Desktop Without Port Forwarding: How It Actually Works

                  9 min read

                  Security

                  Is Remote Desktop Secure? An Honest Threat Model

                  10 min read

                  Comparison

                  RustDesk vs AnyDesk: A 2026 Buyer's Guide (and the Third Option Most Reviews Skip)

                  11 min read