This article is posted with permission from our partner MacPaw. MacPaw makes Mac + iOS apps that have been installed on over 30 million devices worldwide. Freelancers Union members receive 30 days of free unlimited access to CleanMyMacX and Setapp: https://freelancersunion.org/resources/perks/macpaw/

If you’ve ever bought something from Best Buy, you’re probably familiar with Geek Squad. For those who pick up their freelance gadgets elsewhere, Geek Squad is Best Buy’s trusted tech support service. It’s well-known and reliable, which makes it a prime target for scammers.

Some Geek Squad scams trick people into visiting fake websites where they’ll unknowingly enter sensitive details. Others take it a step further, aiming to install malicious software or gain remote access to your device. But the endgame is always to steal your money, your identity, or both.

Moonlock, the cybersecurity division of MacPaw, will break down how Geek Squad scams work, how to spot the warning signs, and what you can do if you’ve been targeted.

How do Geek Squad scams work?

Geek Squad scams are a classic form of phishing. Scammers disguise themselves as Geek Squad employees, whether pretending to be tech support agents or members of the billing department. Their goal is to get you to hand over personal information, send them money, or install malware on your device.

Attackers send out generic emails to hundreds or even thousands of people, hoping that a few will take the bait. Sometimes, they pose as payment services sending invoices from Geek Squad. Other times, they’ll claim to be Geek Squad technicians offering to fix issues with your device. They might even call you directly, spinning elaborate lies to gain your trust.

The core tactic is always the same: create a sense of urgency and trick you into acting without thinking. If you don’t recognize their game, you risk giving away your information, your money, and peace of mind.

Moonlock has collected here a few of the most common ways Geek Squad scams play out.

Geek Squad auto-renewal scam

This one’s a favorite among scammers. You get an email claiming that your Geek Squad subscription is about to auto-renew, and a big charge is headed for your bank account.

The email is designed to make you panic. Did you accidentally sign up for this? How do you cancel it before they take your money? The scammers provide a convenient link or phone number for “canceling” the payment.

If you follow the link or call, you’ll be asked for personal information like your bank account details or Social Security number. Of course, there’s no subscription. Just a scammer eager to use your information to clean out your account or steal your identity.

Hardware fix scams

In this version of the scam, someone pretending to be a Geek Squad technician contacts you, claiming your device has malware or another serious problem that only they can fix.

They’ll ask you to download software to give them remote access to your computer. What you’re actually downloading is malware, often designed to steal sensitive information like passwords, files, or banking details.

Fake invoices

Scammers send fake invoices via email, claiming you’ve been billed for Geek Squad services. The invoice might reference a Best Buy membership, a device warranty, or even antivirus software.

The email usually contains a link to “dispute” the charge or a phone number to call for support. If you engage, you’ll be directed to share personal information or download malicious software. In some cases, the invoice itself may contain malware (if it’s a downloadable attachment).

How to spot a Geek Squad scam

Thankfully, Geek Squad scams aren’t hard to spot once you know what to look for. These red flags can help you identify phishing attempts:

• You don’t remember buying anything from Best Buy: If you’ve never purchased anything at Best Buy, how would they get your contact details? 
• Bad spelling or grammar: Legitimate messages from companies like Best Buy won’t be riddled with typos and clunky sentences. If the message looks like it was written in a hurry (or poorly translated), it’s a scam.
• Unofficial email address: Always check the sender’s email address. Real Geek Squad emails will come from @bestbuy.com. Anything from Gmail or other random domains is a red flag.
• Generic greeting: If the message starts with “Dear Valued Customer” instead of your name, it’s likely a mass email phishing attempt. Legitimate companies usually personalize their communications.
• Sketchy links: Hover over links in the email or use a URL checker to see where they’ll take you. If the URL looks suspicious or doesn’t match Best Buy’s official website, don’t click.
• Scare tactics and urgency: Scammers thrive on creating panic. If a message or call makes you feel rushed or scared, it’s probably a ploy to get you to act without thinking.
• Asking for remote device access: If someone wants you to download remote access software or share your device, treat it as a major red flag.
• Unsolicited calls: Best Buy doesn’t make random calls to customers. If you receive one, treat it with caution and contact the company directly through their official website BestBuy.com or phone number 1-888-BEST BUY (1-888-237-8289).

What to do if you fall victim to a Geek Squad scam

Falling for a scam is never a good feeling. But before you sink into a spiral of regret, remember this: acting quickly can save you from further trouble.

1. Scan your device for malware

If you’ve clicked on a suspicious link or downloaded something sketchy, run a malware scan on your device immediately. Think of it as a digital detox, scrubbing away any harmful software that scammers may have planted. On a Mac, tools like CleanMyMac’s Protection module, powered by Moonlock Engine, can make quick work of these nasty intrusions.

2. Call your bank 

If you’ve shared your bank account or credit card details, tell your bank or credit card company without delay. Explain what happened and see if they can reverse any unauthorized charges or set up fraud alerts on your account. They’ve dealt with this sort of thing before and are well-equipped to help.

3. Freeze your credit

If there’s even a hint that your Social Security number may have been compromised, freezing your credit is your best bet. Contact the three major credit bureaus – TransUnion, Experian, and Equifax – to lock down your credit and prevent anyone from opening accounts in your name.

4. Change your passwords

Once your financial and personal data are secured, it’s time to update your passwords. Start with the ones that matter most, like your email and bank accounts. Even if you’re not sure whether these accounts were breached, changing passwords is a simple but effective safeguard. And if you don’t already use a password manager to create and store strong, unique passwords, now is an excellent time to start.

5. Report the scam

Let Best Buy know what happened by calling their official Geek Squad support line at 1-888-BEST-BUY. Reporting fraudulent calls and emails to the Federal Trade Commission (FTC) at reportfraud.ftc.gov is also a smart move. Not only does this help protect others, but it also gives law enforcement the information they need to track down and stop scammers. Also, flag phishing emails in your inbox to help your provider identify and block similar messages in the future. 

How to prevent Geek Squad scams

Avoiding Geek Squad scams is all about staying vigilant and practicing good digital hygiene. A great first step is to reduce your digital footprint. The less personal information about you floating around online, the harder it is for scammers to target you. Delete old, unused accounts, say no to unnecessary cookies, and consider using a VPN to keep your online activity private.

Another way to protect yourself is to use a temporary email address to sign up for accounts or services you’re less invested in. For instance, Google seems to soon come up with an email forwarding alias system called “Shielded Email.” With burner email addresses and aliases, you can keep your main inbox private and limit the number of phishing attempts that land in it. And when scammy emails do appear, report them as spam. Many email providers learn from your reports and will filter similar messages in the future, keeping your inbox cleaner and safer.

Ultimately, staying safe comes down to awareness. If something feels off, like a message asking for money, personal information, or access to your devices, pause and think before you act. Scammers rely on panic and urgency to trick their victims, so staying calm and skeptical is your best defense. With a little effort, you can outsmart even the craftiest phishing schemes.