The internet is a powerful tool for staying connected with family, managing finances, and accessing information. But it also exposes you to scammers, hackers, and fraudsters who specifically target older adults.
This is not about fear. It is about practical knowledge that keeps you safe. These eight rules are written in plain language with real examples so you can protect yourself — or share this guide with a parent or grandparent who needs it.
The Scale of the Problem
According to the FBI’s 2024 Internet Crime Report, Americans over 60 lost $4.8 billion to online fraud. That is more than any other age group. The average individual loss was over $83,000.
Seniors are targeted because they tend to be more trusting, may be less familiar with technology, and often have savings that scammers want to access. The good news is that most scams follow predictable patterns, and once you know what to look for, they are easy to spot.
Rule 1: No Legitimate Company Will Ever Call You About a Virus
This is the number one scam targeting seniors. You receive a phone call, see a pop-up on your screen, or get an email claiming your computer is infected with a virus. The message urges you to call a phone number immediately.
This is always a scam. Microsoft, Apple, Google, and your internet provider will never:
- Call you out of the blue about a virus on your computer
- Show a pop-up with a phone number to call
- Ask you to give them remote access to your computer
- Demand payment in gift cards, wire transfers, or cryptocurrency
What to do: Hang up the phone or close the browser. If a pop-up will not close, press Ctrl + Alt + Delete, open Task Manager, and force-close your browser. Your computer is fine — the pop-up was the scam, not a real warning.
If you have already given a scammer access to your computer, a professional virus removal and security cleanup can check for any malicious software they may have installed and secure your system.
Rule 2: Never Click Links in Emails You Were Not Expecting
Phishing emails are designed to look exactly like messages from your bank, Amazon, Medicare, Social Security, or other organizations you trust. They ask you to click a link to “verify your account,” “update your payment,” or “confirm your identity.”
How to spot a phishing email:
- The sender’s email address looks wrong (support@amaz0n-billing.com instead of @amazon.com)
- The email creates urgency (“Your account will be suspended in 24 hours”)
- It asks you to click a link to enter personal information
- The greeting is generic (“Dear Customer” or “Dear User”)
- It contains spelling or grammar errors
The safe approach: If an email claims there is a problem with your account, do not click any links in the email. Instead, open a new browser window, type the company’s website address yourself (amazon.com, your bank’s URL), and log in directly. If there is a real issue with your account, you will see it there.
Rule 3: Use Strong, Different Passwords for Each Account
Using the same password for everything is one of the biggest security risks. When one company has a data breach (and they happen constantly), hackers try that same email and password combination on banking sites, email providers, and social media.
The easy solution: Use a password manager. It remembers all your passwords so you only need to memorize one master password. It also creates strong unique passwords for each site automatically.
Good password managers with simple interfaces:
- Bitwarden — works on all devices
- 1Password — popular with families, supports shared passwords
- Apple Keychain — built into iPhones, iPads, and Macs
A family member or professional tech support service can help you set up a password manager in one visit and show you how to use it.
Rule 4: Enable Two-Factor Authentication on Important Accounts
Two-factor authentication (also called 2FA or two-step verification) adds a second layer of security beyond your password. After entering your password, you receive a code via text message or an app that you also enter. Even if someone steals your password, they cannot get in without that code.
Enable 2FA on these accounts first:
- Email (Gmail, Outlook, Yahoo)
- Banking and financial accounts
- Social Security (ssa.gov)
- Medicare (medicare.gov)
- Amazon, Facebook, and any account with payment information
The setup process varies by service, but it usually takes less than five minutes per account. Look for “Security settings” or “Two-step verification” in your account settings.
Rule 5: Keep Your Computer and Software Updated
Updates are not just about new features. They fix security holes that hackers actively exploit. An unpatched computer is significantly more vulnerable than one that is current.
On Windows:
- Go to Settings > Windows Update and click “Check for updates”
- Enable automatic updates so you do not have to remember
On Mac:
- Go to System Settings > General > Software Update
- Turn on automatic updates
Also update your web browser (Chrome, Firefox, Edge) and any software you use regularly. Most browsers update automatically, but check periodically.
Rule 6: Be Cautious on Social Media
Social media scams targeting seniors include:
- Romance scams: Someone you met online professes love quickly and eventually asks for money
- Quiz and survey scams: “Find out your celebrity look-alike” quizzes that harvest personal data
- Fake friend requests: Scammers create duplicate accounts of your real friends
- Marketplace scams: Deals that seem too good to be true on Facebook Marketplace
Protect yourself:
- Set your social media profiles to private (visible only to friends)
- Never send money to someone you have only met online
- Be suspicious of friend requests from people you thought you were already friends with (it is likely a cloned account)
- Do not share your full birthdate, address, phone number, or travel plans publicly
Rule 7: Install an Ad Blocker
Many scam pop-ups and fake virus warnings arrive through malicious advertisements on otherwise legitimate websites. An ad blocker eliminates most of these before you ever see them.
Recommended ad blockers:
- uBlock Origin — lightweight and effective (Chrome, Firefox, Edge)
- AdGuard — also blocks trackers and phishing sites
Ask a family member or technician to install one in your browser. It runs silently in the background and dramatically reduces your exposure to scam pop-ups.
Rule 8: When in Doubt, Ask Before You Click
This is the most important rule. If something feels off — an unexpected email, a pop-up you have never seen before, a phone call that is creating urgency — stop and ask someone you trust before taking action.
Call a family member. Ask a neighbor. Contact a professional. Scammers create urgency specifically because they do not want you to stop and think. The moment you pause and verify, their scam fails.
Good resources for checking scams:
- FTC Scam Alerts: consumer.ftc.gov/scam-alerts
- AARP Fraud Watch Network: aarp.org/fraud
- BBB Scam Tracker: bbb.org/scamtracker
Getting Professional Help
If you or a family member needs help setting up security protections, Techrepair DFW offers in-home computer help for seniors throughout Dallas-Fort Worth. Our technicians are patient, explain everything in plain language, and can configure scam protection, password managers, two-factor authentication, ad blockers, and security software in a single visit.
For senior living communities and retirement homes in the DFW area, we also provide dedicated IT support programs that include resident device support, scam protection education, and WiFi optimization.
Staying safe online does not require becoming a technology expert. It requires knowing the patterns scammers use and having the right protections in place. These eight rules cover the vast majority of threats — follow them consistently, and you significantly reduce your risk of becoming a victim.
