What happens if I installed a remote-access app a scammer asked me to install?
Installing a remote-access app at a scammer's request gives them full visibility and control of your device. This is one of the most dangerous outcomes in tech support and banking scams — act immediately to stop access.
Last reviewed: 10 June 2026
Explanation
Remote-access tools such as AnyDesk, TeamViewer, and similar applications are legitimate software used by IT professionals, but they are also the primary tool used in tech-support scams and banking impersonation fraud. When a scammer persuades you to install and share an access code, they see everything on your screen in real time and can operate your device as if they were sitting in front of it.
With this access, a scammer can open your banking app or website and initiate transfers, harvest saved passwords from your browser, read emails and messages to gather more personal information for further fraud, take screenshots of sensitive documents, or install additional persistent malware that continues operating after you close the remote session.
A common tactic in banking impersonation scams is to guide you through your own banking app while the scammer watches — and sometimes controls — the screen. They may ask you to log in while they observe, or they may take over and make transfers to accounts they control while keeping you distracted with a phone conversation.
The moment you suspect the connection is being misused, close the app immediately. On most devices this means force-closing the application. Then disconnect from the internet (switch off Wi-Fi and mobile data) to prevent any ongoing data exfiltration. Call your bank on the number printed on your card — not any number the scammer provided — before reconnecting to the internet.
Common red flags
- You were contacted unsolicited by someone claiming to be from your bank, a software company, or a government agency who then asked you to install software
- The caller claimed your computer had a virus or your account had been compromised and needed their help
- The 'agent' asked for a code displayed in the remote-access app to 'connect'
- They advised you not to use your device for other tasks during the session
- After the session, money moved from your accounts unexpectedly
- The caller asked you to purchase gift cards or transfer money as part of a 'security procedure'
What to do now
- Close the remote-access app immediately by force-closing it
- Disconnect from the internet — switch off Wi-Fi and mobile data
- Call your bank on the official number from the back of your card before reconnecting
- Change all passwords from a different, clean device
- Have a professional IT technician scan your device for malware or backdoors installed during the session
- Report the incident to your national fraud reporting service and the remote-access software company's fraud team
- Enable two-factor authentication on all accounts once you have secured your passwords
Frequently asked questions
Does uninstalling the remote-access app make me safe again?
Uninstalling the app closes the active remote connection, but does not remove any malware or backdoors that may have been installed during the session. Have a professional scan the device before using it again for banking or sensitive activities.
My bank says the transfers are authorised — can I still get a refund?
Banks sometimes resist refunding scam payments by arguing you authorised the transfers, even when done under duress or deception. Challenge this formally in writing, cite the circumstances, and escalate to your national financial ombudsman if the bank refuses. Outcomes vary by jurisdiction and bank.