Screen Scraping / Remote Desktop Fraud
Fraud in which an attacker gains remote access to a victim's screen — often by tricking them into installing remote-access software — to view and control their device in real time.
Also known as: remote access scam, remote desktop fraud, tech support remote access
Last reviewed: 10 June 2026
Screen scraping attacks, in the context of consumer fraud, most commonly involve convincing victims to install legitimate remote-access tools (such as AnyDesk, TeamViewer, or Remote Desktop) under a false pretext — typically fake tech support, a 'bank security check', or a job offer that requires 'remote onboarding'. Once connected, the fraudster can navigate the victim's banking applications, initiate transfers, and view sensitive documents while the victim watches helplessly.
In some variants, the attacker asks the victim to look away, distract them with conversation, or close the screen while completing a fraudulent transaction. The misuse of legitimate software means antivirus tools rarely flag the activity.
Legitimate banks, government agencies, and reputable tech companies will never ask you to install remote-access software or share your screen as part of a routine check or refund. Refuse any such request immediately and hang up.
Examples
- A caller posing as bank fraud prevention asks a customer to install AnyDesk to 'run a security scan'; the caller then navigates to the customer's online banking and transfers funds.
- A job offer requires a new 'employee' to install remote software for training; the scammer uses the session to access cryptocurrency wallets.