The Best Buy Geek Squad Scam: What It Is and How to Protect Your Parents
Your parent opens their email and sees a message from "Geek Squad." It says their annual protection plan is renewing automatically — and $399.99 is about to be charged to their account. There's a phone number to call if they want to cancel.
They call the number.
That call is the scam.
The Geek Squad impersonation scam is one of the most widely reported fraud schemes in the United States, and seniors are its primary target. The FTC and FBI have both issued warnings about it. Understanding exactly how it works is the fastest way to protect your parents before they lose money.
How the Geek Squad Scam Works
The scam almost always starts with an email — a convincing-looking message that appears to come from Best Buy's Geek Squad technical support service. The email typically announces that an "annual membership" or "protection plan" is auto-renewing for a large amount, usually between $299 and $499.
The goal of the email is not to collect payment directly. The goal is to get your parent to call a phone number.
When they call, a "Geek Squad agent" answers and tells them the charge can be reversed — but only if they allow remote access to their computer so the agent can process the refund. From here, the scam can unfold in several ways:
The Overpayment Variation: The scammer "accidentally" refunds too much money (say, $2,000 instead of $399). They then panic and beg your parent to send back the difference via gift cards, wire transfer, or Zelle. In reality, no money was ever deposited — the scammer was manipulating the screen display to make it look like a large deposit appeared.
The Full Account Takeover: With remote access installed (typically via AnyDesk or TeamViewer), the scammer can see everything on the screen, access saved bank passwords, and drain accounts while the victim watches — often with the screen blacked out to hide what they're doing.
The Fake Refund via Bank Transfer: The scammer instructs your parent to log into online banking "to confirm the refund." Once visible, the scammer transfers money out directly.
Why Seniors Are Specifically Targeted
This scam works particularly well on older adults for a few reasons. Many seniors have a Geek Squad account or have used Best Buy in the past, so a renewal notice doesn't automatically seem suspicious. The scam also exploits a deeply ingrained social norm: if you receive a bill you didn't expect, you call to dispute it. The scammers are counting on that rational response.
Additionally, the urgency of "your account is about to be charged" triggers the kind of quick action that bypasses critical thinking. The call happens before the parent has time to verify with you.
What the Fake Emails Look Like
Knowing how to recognize a fake Geek Squad email is a skill worth teaching your parents directly.
Red flags to look for:
- The sender's email address is not from BestBuy.com or GeekSquad.com. Scammers use addresses like
[email protected],[email protected], or random strings of letters. The display name may say "Geek Squad" but the actual address is the tell. - The email contains a phone number but no login link. Legitimate company billing emails point you to your account on their website, not to a phone number.
- The dollar amount is oddly specific (e.g., $399.99, $449.97) and the renewal "term" is vague (annual, multi-year, lifetime).
- Poor grammar, unusual spacing, or a logo that looks slightly off.
- No personalization — the email doesn't address your parent by name or reference a specific account.
The easiest verification step: Tell your parent that before calling any number in an email, they should go directly to BestBuy.com (by typing it in the browser, not clicking a link) and check their account. If no such subscription exists, the email is fake.
Free Download
Get the Elder Scam Shield Quick Start Checklist
Everything in this article as a printable checklist — plus action plans and reference guides you can start using today.
What to Do If Your Parent Already Called
If your parent called the number and gave a scammer remote access to their computer, treat this as a financial emergency.
Immediate steps:
- Disconnect the computer from the internet. Unplug the ethernet cable or turn off Wi-Fi. Do not turn the computer off until you've disconnected — some remote access tools can prevent shutdown commands.
- Call the bank immediately. Use a different phone (not the one that called the scammer). Tell the fraud department: "I was the victim of a tech support scam and gave someone remote access to my computer. Please freeze all online access and review transactions from the last 24 hours."
- Change the email password from a clean device. If the scammer had access to the screen while your parent was logged into email, they may have noted the password or set up forwarding rules.
- Run Malwarebytes (free download at malwarebytes.com) to check for any software left behind.
- Report it to the FTC at ReportFraud.ftc.gov and to the FBI's Internet Crime Complaint Center at IC3.gov.
If gift cards were purchased, call the card issuer immediately — Apple, Google, Amazon, and Steam all have fraud departments that can sometimes freeze unused card balances if you act within hours.
How to Prevent It Going Forward
The best defense is a filter that stops these emails from ever reaching your parent's inbox.
Set up spam filtering:
- Gmail's spam filter catches many of these. Make sure it's enabled.
- If your parent uses Outlook, go to Settings > Junk Email > Filters and turn it up to "High."
- Consider switching elderly parents to a dedicated email address with strong filtering, and have their old address forward only messages from known contacts.
Set up a browser extension:
- Install Malwarebytes Browser Guard (free) on their browser. It specifically blocks tech support scam pages and fake alerts.
- Install uBlock Origin (free) to block malicious ads that sometimes display fake Geek Squad pop-ups.
Establish a "call me first" rule: One of the most effective protections is a simple family agreement: before calling any number in an email about a charge, your parent will call you first. This adds 60 seconds to the process and breaks the scammer's urgency trap.
Set up bank transaction alerts: If a scam does succeed, early detection limits the damage. Set up alerts on your parent's bank account for any transaction over $100 and for any international or card-not-present transaction. Most banks allow this through the alerts settings in their mobile app.
The Geek Squad Scam Is Getting More Sophisticated
Scammers have begun pairing the Geek Squad lure with AI voice cloning. In newer variants, the initial "call" comes from a robocall that sounds like an automated Best Buy notification, then connects to a "live agent." The voice may sound professional and calm — nothing like the stereotypical scammer.
The FTC's 2024 data shows tech support scams cost Americans over $1 billion annually, with adults 60 and older accounting for the majority of reported losses.
The Elder Scam Shield guide includes a full chapter on tech support scams — covering not just the Geek Squad variant, but also fake Microsoft alerts, Apple ID suspension scams, and the "refund overpayment" technique scammers use after they've gained access. It also provides step-by-step instructions for setting up remote access monitoring so you can verify your parent's computer wasn't compromised during a call.
If you're protecting an elderly parent from scams, the best time to set up these safeguards is before an email like this arrives — not after.
Get Your Free Elder Scam Shield Quick Start Checklist
Download the Elder Scam Shield Quick Start Checklist — a printable guide with checklists, scripts, and action plans you can start using today.