This article is from Trend Micro.
On Windows 10, Microsoft Defender Antivirus is the default cybersecurity protection from viruses, spyware, malware, and ransomware. Given its ubiquity among computer users, scammers have been using it as a vehicle to send phishing emails out to would-be victims.
In the Windows Defender email scam, cybercriminals will email under the guise of the Microsoft Store. A fake invoice will be presented, and you will be told that you have either already been charged a Defender subscription fee, or that a transaction payment is imminent.
[Text: Thank you for using our services. This email is regarding your purchase of Microsoft defender. Please check below for more details of invoice. Dear partner if you find above information incorrect please contact our customer service executive to resolve the issue. If you didn’t’ make this purchase or want to cancel you purchase you can contact our customer service executive he’ll help you to get a full refund of your amount. Please contact our customer care representative within 48 hours of receiving this invoice details. Customer service representative contact: +1(845) 315-6872.]
There will be a phone number, link, or email address for you to contact in order to cancel or dispute the payment. This is the core of the scam as it is during this communication that the scammers will attempt to have you enter or relay sensitive personal and banking information. Do not become their victim!
For starters, Microsoft Defender Antivirus is completely free for Windows users as it is in-built into the operating system. You will NEVER incur a charge for its use.
Never call numbers, open attachments or links in unexpected emails. Pay attention to email addresses used. Companies like Microsoft NEVER use Google servers for their email addresses — neither do they have random names and numbers in their address, particularly for public communication.
[This is bogus nonsense.]
If in doubt, you can always contact the company directly and confirm any correspondence with them — alternatively, log in to your official account on their website and you should have notifications there too if an account-related occurrence took place. Finally, do keep an eye out for grammatical mistakes and discrepancies in logos used as these are giveaway signs.
If you’d like a helping hand now and then to discern fact from fiction, why not also give Trend Micro Check a go? It will analyze statements, email addresses and links, informing you of any discrepancies or suspicious features.
As ever, if this article’s been of use to you, please do SHARE with friends and family!
Have you fallen for a hoax, bought a fake product? Report the site and warn others!
In a nutshell: A good VPN protects your privacy with strong encryption, a strict no-logs policy, and fast protocols like WireGuard. The best VPNs also offer wide server coverage, leak protection, and easy-to-use apps for all devices. For 2025, the top providers are NordVPN, ExpressVPN, Surfshark, Proton VPN, Private Internet Access, CyberGhost, and Mullvad—each excelling in speed, security, or value. In an age where every click is tracked, a Virtual Private Network (VPN) is no longer just a luxury—it's an essential tool for digital privacy and security. A VPN works by creating a secure, encrypted tunnel between your device and the internet, masking your real IP address and protecting your sensitive data from prying eyes. But with hundreds of providers out there, how do you sort the secure from the suspect? This guide breaks down the non-negotiable features of a quality VPN and highlights the 7 top-rated services for 2025. What to Look for in a Good VPN: The 4 Non-Negotiable Pillars 1. Ironclad Security Features Strong Encryption: AES-256, the gold standard. Secure Protocols: OpenVPN, WireGuard, NordLynx, Lightway. Avoid PPTP. Kill Switch: Ensures no accidental IP leaks. Leak Protection: Covers DNS, IPv6, and WebRTC. 2. Verified Privacy Practices No-Logs Policy: No activity or metadata tracking. Independent Audits: Verification by third parties. Safe Jurisdiction: Prefer countries outside the 5/9/14 Eyes alliances. 3. High-Speed Performance Fast Protocols: WireGuard and equivalents. Large Server Network: Less crowding, more reliable speeds. 4. Essential Usability Features Multi-Device Apps: Windows, Mac, iOS, Android, routers. Simultaneous Connections: One account, many devices. Unblocking Power: Netflix, Hulu, BBC
This article has been updated by Jamie James on June 9 with the latest data and analysis we have found using real user reports and experiences submitted to ScamAdviser. Just received that terrifying notification? Or perhaps you've noticed suspicious activity in your accounts? Take a deep breath. Your email, password, phone number, home address, payment details, or identity documents may now be in places you cannot control. But the next steps do not have to be confusing. What matters most is how quickly you act, order, and know which exposed data creates the biggest risk. This guide explains what to do after a data breach, how to check the damage, and how to protect yourself from identity theft, account takeover, and follow-up scams. Quick Summary Verify the data breach notice through the company’s official website before clicking any links. Secure your primary email account first because it controls many password resets. Change the exposed password and every reused or similar password. Enable multi-factor authentication on email, banking, payment, cloud, and social accounts. Contact your bank or card issuer if payment or bank account details were exposed. Freeze or protect your credit if sensitive identity information was compromised. Watch for phishing messages, fake refund offers, and scam websites that use your leaked details. Starting with Data Breach Numbers The numbers don't lie: according to a 2024 report, the number of data breach victim notices has grown by a staggering 211% year-over-year. This isn't just a distant threat; it's a stark reality many individuals fa