What to Do After a Remote Access Scam

Remote access scams often start with a phone call or a fake pop-up alerting you to a "problem with your computer" or your "bank account." Once a scammer has had access to your machine, the clock is ticking to secure your data.

1. Disconnect Immediately

If you suspect something is wrong while the scammer is still on the machine, turn off your Wi-Fi or unplug your internet cable. This breaks their connection instantly. If the computer is frozen, force it to shut down by holding the power button.

2. Secure Your Bank Accounts

If you logged into your bank while they were watching, or if you think they found your banking details, call your bank immediately. Use a different device (like your phone) to do this. Ask them to monitor for suspicious activity or freeze your accounts.

3. Change Passwords (from a different device)

The scammer may have installed software to log your keystrokes or steal saved passwords. Use a clean device—like a separate smartphone or another computer—to change your main passwords, especially for your email and banking.

4. Remove the Remote Software

Scammers typically use legitimate tools like AnyDesk, TeamViewer, or Zoho Assist. You must uninstall these programs. However, be aware that they may have also installed "backdoors" that allow them to return later.

5. Professional Clean & Audit

It is highly recommended to have a professional audit the machine. We can remotely check for persistent malware, hidden software, and signs of data theft. In some cases, the only way to be 100% sure is to wipe the machine and start fresh.