Hope this is the correct place for to learn how to help in the follow through.
A family member unfortunately allowed remote access to a tech support scam. At least the printer works now.
Prevailing advise has been to change passwords and re-install the OS. In this particular case sensitive documents had been scanned to the desktop- are downloads possible from fastsupport(.)com?
In that situation, how are scammers able to access passwords? What documents are targeted first? Can files be downloaded from the target machine (do my relatives need to get new passports). Would an app like 1Password protect them from a remote access data breach?