Remote Access Scam
What’s a remote access scam?
A Remote access scam is when a scammer will call or email you pretending to be from an organisation you use such as a bank, government agency, telco or an energy retailer. They may then request access to your computer or device. The scammer is seeking remote access to your computer for the purpose of accessing your personal information and valuable data. For example, they may seek access to your online banking.
How does the scam work?
The scammer will contact you requiring your assistance to help them catch hackers, fix NBN or computer issues, help with secretive tasks or to provide a refund. The scammer may ask to access your device by asking you to download different types of software. Downloading software may grant them control of your device and can be used to observe your keystrokes to capture your passwords. Other scenarios may be:
- The scammer calls to tell you that your computer or device has been hacked and they need help to catch the hackers. They may also say your mobile or internet access has been compromised.
- The scammer may ask you to allow remote access to your computer or electronic device and asks you to log into your internet banking while they have remote access.
- The scammer may then make your screen go blank or may put up a fake screen so that you can’t see them transferring funds out of one of your accounts into another.
- When the screen is removed, the scammer may say they have “credited” your account with “baited” funds to catch the hacker. You are led to believe these funds were placed there by the caller and may not realise the funds are your own, transferred from one of your other accounts.
- The victim may then allow the scammer to transfer the funds out of their account to “catch” the hacker.
- The scammer may proceed to transfer money from your account, along with requesting you to share the security codes sent to your mobile to validate the transaction.
- Another scenario is the scammer may ask to withdraw the cash directly from your account, either in branch or at an ATM and to deposit the cash into an account via the post office.
- The scammer may ask you to not tell anyone, in particular your bank. They may even tell you to lie to anyone that asks.
Simple rules to avoid scams –
- Never give anyone access to your devices.
- Never share online banking login details or any passwords with anyone.
- If you ever receive an unexpected phone call, text or email about your computer and remote access is requested, do not follow instructions -- hang up!
What do I do if someone has remote access to my computer?
- Shut down the session immediately
- Call your bank immediately to change passwords and codes
- Talk to an IT professional
I’ve been scammed, what next?
- Contact your bank immediately
- Change your passcodes
- Report the scam via the Australian Cyber Security Centre (ACSC)
