My Parent Allowed Someone to Remotely Access His Computer, What Now?
Tech support scams rely on fear and urgency to trick victims into giving strangers access to their computers. The moment you suspect something
What can I do if I was affected by the Chrome spyware extension?
🛠 How the Spyware Worked
- Originally a real VPN, FreeVPN.One became spyware after updates in April 2025 added broad permissions.
- It silently captured screenshots of everything you viewed including banking, work docs, personal chats and sent them to remote servers.
- Over 100,000 users trusted it because it had a verified Chrome badge and was featured on the Web Store.
- Used injected scripts to capture sensitive information without consent.
🔒 If You Still Have Access to Your Accounts
- Remove the Extension Immediately: Go to chrome://extensions → Find FreeVPN.One → Click Remove.
- Scan Your Computer: Run a full antivirus/anti-malware scan to ensure no additional spyware remains.
- Change All Important Passwords: Update email, banking, work, and social media passwords. Use strong, unique passwords.
- Enable Two-Factor Authentication (2FA): Prefer app-based authentication (Google Authenticator, Authy, etc.) over SMS.
- Check Account Security Logs: Review recent login activity and revoke unfamiliar sessions.
- Monitor Financial & Personal Accounts: Watch for unauthorized transactions or login attempts.
🚫 If Sensitive Accounts May Be Compromised
- Notify Banks/Workplace, If financial or company data was accessed.
- Freeze or Replace Cards, If banking credentials may have been exposed.
- Log Out of All Sessions and force-refresh logins across devices.
🔁 Ongoing Protection
- Audit browser extensions regularly and remove ones you don’t use.
- Avoid free or unverified VPN/browser security tools.
- Keep Chrome, OS, and antivirus updated.
- Use a password manager to create and store strong passwords.
- Stick to trusted VPN providers (ProtonVPN, NordVPN etc.).
⚠️ Report the Incident
- Google: Report malicious extensions → Chrome Web Store Help.
- Cybercrime Agencies:
- U.S.: FBI IC3 → ic3.gov
- UK: Action Fraud → actionfraud.police.uk
- India: CERT-In portal → cert-in.org.in
- EU/Global: Report to your national CERT.
- FTC (U.S.): If financial or identity theft is suspected → reportfraud.ftc.gov
- Local Police: If extortion, fraud, or financial loss occurs.
- 911cyber.app: Get immediate cybersecurity help.
✅ Bottom Line
The FreeVPN.One case proves that even “verified” extensions can turn malicious. If you installed it, remove it now, secure your accounts, scan your devices, and report the incident. Going forward, limit extensions, use trusted VPNs, and enforce strong password and authentication practices.
Get Help
Online Scam Prevention & Recovery
What is the RatOn Android Malware, and How Can I Protect My Banking and Crypto Accounts?
A sophisticated Android malware named RatOn has emerged, evolving from a basic NFC relay tool into a potent Remote Access Trojan (RAT). It now features
How can I secure my WhatsApp account if hackers try to link their device to it?
You received a WhatsApp message that looked like it came from a friend: “Hi, I accidentally found your private photo!” with a shortened link.
How to Protect Yourself from Impersonation Scams
“I was invited to a Zoom interview by someone claiming to be a recruiter from a well-known company. They even used a real employee’s name and photo from the company’s website.
Someone Called My Son’s Name Through Our Ring Camera, Is Our Home Compromised?
🔍 What Happened? "I was in my kitchen when I heard someone call my 6-year-old son’s name from the living room.
What can I do if I receive an email claiming I’ve been hacked and demanding Bitcoin payment?
These emails often claim to have compromising information or videos of you and threaten to release them unless you pay in Bitcoin.
Schedule a free consultation
A free 15-min cybersecurity consultation