You open your inbox and see a message titled “Payment order settled” with an official-looking invoice from Geek Squad. At first glance, it looks legitimate. It includes your email address and even a phone number for help. That is exactly what happened when I received one of these messages this week.
This new Geek Squad scam email is designed to make you panic, call the fake number, and share sensitive information before realizing it is a trap. Before you know it, your curiosity could turn into a costly mistake, so let’s look at the red flags to watch for and how you can protect yourself.
Red flags that give the scam away
When I looked closer, several warning signs stood out:
- The email said “Dear User” instead of using my name.
- It also says TO: KAREN HILL, which is obviously not me.
- The sender’s address was from a Gmail account, not Geek Squad.
- It listed a phone number urging me to call customer support to cancel the renewal or my account will be debited.
- The invoice said $580.57 would be charged for a two-year Geek Squad subscription, even though I never signed up for one.
These details are meant to create urgency and push you to react before thinking.
How the scam works
The scam depends on fear and confusion. Once you call the number, the person on the line sounds polite and professional. They might say they need to verify your payment or reverse a charge. In reality, they are trying to get your credit card number or convince you to install software that gives them access to your computer.
In some cases, they claim to refund too much money by accident and ask you to send part of it back. That is how victims lose hundreds or even thousands of dollars.
Why these scam emails look so real
Scammers have refined their tactics. In this Geek Squad scam email I received, they copied the official logo, used clean layouts, and included my actual email address to make it look legitimate. They often get this information from data leaks or security breaches found online.
AI now makes these scams even harder to spot. It helps scammers write natural messages, design fake invoices, and create support scripts that sound real. With these tools, they can make almost anyone believe the email is genuine.
Always pause before reacting. Read carefully, check the sender, and question anything that feels suspicious. If you want to stay one step ahead, here are some other things that can help keep you safe.
How to stay safe from scam emails
Scam emails like the fake Geek Squad invoice are becoming more common and more convincing. They use fear and urgency to make you click or call before you think. Protecting yourself means slowing down, verifying every detail, and strengthening your digital defenses. Here is how you can stay safe.
Watch the latest episode of The CyberGuy Report.
Missed this event? Sign up via the registration form and see our live recording.
See Kurt’s Prime Day picks for useful gadgets, practical upgrades and everyday tech while the deals last.
1) Do not call or click anything in the email and use strong antivirus software
The phone number or link in the message connects you directly to scammers, so don’t click or call. Once you engage, they can pressure you into sharing personal details or even install harmful software on your device. The moment I saw that “Payment order settled” email, I realized something was off because I don’t even have a Geek Squad account. That alone was a major red flag. If you ever get a message about a service you never signed up for, delete it right away. Instead of calling the number in the message, go to the official Best Buy or Geek Squad website to confirm if there is a real issue with your account. Also, sign up for strong antivirus software. Antivirus software acts as your digital guard. It scans downloads, detects malicious links, and warns you before dangerous sites load. Choose a trusted program that updates automatically and includes email protection features. This extra layer of defense can prevent malware from taking hold if you accidentally click something suspicious.
- Strong real-time protection against viruses, malware, ransomware and hacking attempts
- AI-powered scam protection to help identify suspicious emails, texts and websites
- Built-in password manager to securely store and manage logins
- 2 GB PC cloud backup to help protect important files from ransomware or hardware failure
- Smart firewall and phishing protection
- Protects 1, 3 or 5 devices
- Available for Windows, macOS, Android and iOS
- Includes real-time threat protection, smart firewall and phishing protection to guard against online attacks
2) Check the sender’s email address carefully
Scammers often use email addresses that look real but have slight differences, such as extra numbers, misspelled words, or unusual domains. A genuine Geek Squad or Best Buy email will come from @bestbuy.com. Always hover over the sender’s name to see the actual address before responding.
3) Never share personal or payment details with unexpected callers
If someone contacts you claiming to be from Geek Squad or Best Buy, stay calm and skeptical. Real companies do not ask for banking details, gift card payments, or remote access to your computer over the phone. Hang up and contact the company directly through its verified website or customer service number.
4) Use a data removal service
Many scams start with stolen or leaked personal data. A data removal service can help delete your information from data broker sites that sell contact lists to marketers and scammers. Reducing your digital footprint makes it harder for criminals to target you with fake invoices or phishing emails.
While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.
Exclusive Deal for CyberGuy Readers (60% off): Incogni offers a 30-day, money-back guarantee and applies a special CyberGuy discount to all annual plans, for as low as $6.39/month for one person (billed annually) or $13.19/month for your family (up to 5 people) on their annual plan.
I strongly recommend the family plan. Here's why: the scam that starts with a Google search of your name almost always ends with a call to you, your elderly parent or a text to your adult child. Protecting yourself without protecting the people around you is half a solution. At $2.64 per person per month, the family plan covers up to five people, and the people most likely to be the final target are often the ones who'd never think to protect themselves.
Get Incogni and remove your info
5) Watch your bank and credit card statements
Even with precautions, it is smart to monitor your accounts. Check your bank and credit card activity weekly for any charges you do not recognize. If you see something suspicious, contact your financial institution right away to report and dispute the charge.
6) Enable Two-Factor Authentication (2FA)
Two-factor authentication adds another barrier between you and scammers. Even if someone steals your password, they cannot log in without the secondary code sent to your phone or authentication app. Turn on 2FA for your email, online shopping, and banking accounts.
7) Use strong, unique passwords
Weak or repeated passwords make you an easy target. Create long, unique passwords for each account. A password manager can securely store them and generate complex combinations that are hard to guess or crack.
Next, see if your email has been exposed in past breaches. Our #1 pick, NordPass, includes a built-in breach scanner that checks whether your email address or passwords have appeared in known leaks. If you discover a match, immediately change any reused passwords and secure those accounts with new, unique credentials.
- Unlimited password storage
- Secure sharing
- Password health reports
- Auto-fill and emergency access
- Data breach monitoring to alert you if your credentials have been exposed
- A Security Dashboard with tools like the Data Breach Scanner and Password Health Checker to identify weak, reused, or compromised passwords
CyberGuy Exclusive Deal: Save 52% now with CyberGuy’s exclusive NordPass offer – Get 1 extra month FREE with a 2-year plan. Try 30 days risk-free for only $1.43 per month!
8) Update your software regularly
Old software is one of the easiest ways for hackers to slip in. Keep your operating system, browser, and security programs updated. Turn on automatic updates so you do not have to think about it. These patches often close known security holes that scammers exploit.
9) Check official accounts before panicking
Before reacting to any invoice or payment alert, go straight to the official account or service mentioned, such as Geek Squad, PayPal, Amazon or your bank. Log in directly through their website or app to verify the details. If nothing shows up there, the email is a scam. This quick step can save you from a costly mistake.
10) Report the email as phishing
Reporting suspicious emails helps stop scammers from targeting others. Most email services, including Gmail, Outlook and Yahoo, allow you to mark messages as phishing. You can also forward the email to reportphishing@apwg.org, which goes to the Anti-Phishing Working Group (APWG), or to abuse@bestbuy.com to alert the proper teams.
Related Links:
- New 401(k) tax rules could expose you to scams
- Beware of these fake credit card account restriction scams
- Payroll scam hits U.S. universities as phishing wave tricks staff
Kurt’s key takeaways
Receiving one of these fake invoices can be stressful, but remember that many people get the same message every day. The goal is to recognize the signs, refuse to respond, and report it to protect others.
Have you ever received a convincing scam email like this? How did you handle it? Let us know in the comments below.
FOR MORE OF MY TECH TIPS & SECURITY ALERTS, SUBSCRIBE TO MY FREE CYBERGUY REPORT NEWSLETTER HERE
Copyright 2025 CyberGuy.com. All rights reserved. CyberGuy.com articles and content may contain affiliate links that earn a commission when purchases are made.
🎙 Now Streaming: My New Podcast: The CyberGuy Report
Kurt’s Top Deals
Deals move fast and inventory can be limited, so don’t wait too long.
| 🔥 Editor’s pick  Summer entertaining Ninja SLUSHi Machine (26% off) Frozen drinks and slushies at home in minutes. | |
| 💰 Top deal  Outdoor essential TYPEC Solar Bug Zapper (36% off) Solar-powered bug zappers for patios and camping. |
7 comments
I didn’t get a scam from Best Buy, but I did receive one from McAfee this morning. It stated “your subscription is now live and running smoothly…” Total scam. Thank you for continuing to share information on how to protect our identity online.
It seems that gmail is the preferred email domain for scammers. I can’t tell you how many scam emails I get from gmail.com but it is a lot and all are scams. Any email from gmail.com goes directly into junk and then my trash.
I received such an email once, so I simply responded that, with over 20 years as an IT Professional, and an additional 30 years as an electronics technician and engineer, I know more about computers than all of Geek Squad put together.
I get these posted directly to my calendar too.
Kathy, you can read more about that scam here.
I have received several of the “Best Buy” scam emails. Each one showed iCloud not gmail. I forwarded each to the spam addresses for Best Buy and iCloud.
I received an email that appeared to be from Geek Squad and called the number listed. They took control of my phone and claimed they had refunded me too much money and needed it returned. I later realized it was a scam. I had to go to my bank, open a new account, and get a new credit card. I did get my money back, but it took quite a while.