AnyDesk/TeamViewer Remote Access Scam — How to Identify & Stay Safe
INDIA — By BharatSecure Threat Intelligence Team ·
Severity: CRITICAL | View Full Scam Details
AnyDesk/TeamViewer Remote Access Scam in India: How It Works, Red Flags, and How to Stay Safe
Remote access apps like AnyDesk and TeamViewer are legitimate tools used for IT support. But in India, scammers increasingly misuse them to take control of a victim’s phone, capture OTPs, and drain bank accounts—often within minutes.
This is commonly seen as a “KYC update” or “account blocked” call, where the fraudster pretends to be your bank, wallet, telecom provider, or customer care.
Why this scam is so dangerous
When you install a remote access app and share the access code, you may be giving a stranger live control over your device. If you also grant permissions (like Accessibility, screen sharing, or device admin), they can:
- See everything on your screen (including OTPs and bank notifications)
- Open your banking/UPI apps while you are distracted
- Initiate transfers or add beneficiaries
- Trick you into entering your UPI PIN/OTP (“for verification”) while they execute a transaction
Unlike phishing links, this attack doesn’t always rely on fake websites—it relies on social engineering and real remote-control software.
How the AnyDesk/TeamViewer remote access scam works
Step 1: The setup call or message
You receive a call/WhatsApp message from someone claiming to be:
- Bank customer care / KYC desk
- UPI support / wallet support
- Telecom SIM verification team
- Marketplace “refund” team
They create urgency: “Your KYC is pending,” “Your account will be blocked today,” “Refund is stuck,” or “Suspicious activity detected.”
Step 2: They push you to install the app
They instruct you to download AnyDesk/TeamViewer from the Play Store/App Store. Because it’s a real app, many people assume it’s safe.
Step 3: They ask for the access code
AnyDesk and TeamViewer display a unique access code/ID. The scammer asks you to share it (often described as “verification code” or “complaint number”).
Once you share it and approve the connection request, they can view and control your phone.
Step 4: They execute the theft
Common tactics include:
- Asking you to open your bank/UPI app “to check status” while they take over
- Keeping you on the call so you don’t notice what’s happening
- Triggering an OTP and reading it from your notification tray or screen
- Convincing you to enter your UPI PIN/OTP, saying it’s required for “receiving money” (it is not)
In many cases, the victim realizes only after money is debited.
Red flags to spot this scam early
Clear warning signs
- Someone asks you to download AnyDesk/TeamViewer (or any remote desktop app)
- They ask for a unique 9-digit access code or remote ID
- Urgent threats: “KYC pending,” “account will be blocked,” “final warning today”
Behavioral red flags
- They refuse to let you disconnect the call
- They insist you keep your screen on
- They discourage you from calling the official bank number back
How to protect yourself (practical checklist)
Do this immediately if someone asks for remote access
- Say no and end the call. Real banks do not ask to control your phone.
- Never share remote access codes, OTPs, or your UPI PIN.
- Verify support independently by calling numbers listed on your bank’s official website or app.
If you already installed AnyDesk/TeamViewer
- Disconnect the session immediately (turn off Wi‑Fi/mobile data if needed)
- Uninstall the remote access app
- Check permissions:
- Settings → Accessibility: disable any service you don’t recognize
- Settings → Device Admin Apps: revoke unknown admin access
- Settings → Installed apps: review suspicious apps
- Secure your accounts:
- Change banking/app passwords
- Reset UPI PIN (via your bank/UPI app)
- Enable app lock/biometrics
- Monitor your bank statements and set transaction alerts
What to do if you lost money
Act fast (time matters)
- Call 1930 (National Cyber Crime Helpline) as soon as possible.
- Report online at cybercrime.gov.in.
- Inform your bank immediately through official channels and request transaction reversal/freezing if possible.
- Preserve evidence:
- Call logs, WhatsApp chats, screenshots
- AnyDesk/TeamViewer connection history (if visible)
- Transaction IDs and timestamps
If your phone is compromised
If you suspect persistent access:
- Back up essentials (photos/contacts)
- Consider a factory reset
- Reinstall apps from trusted sources only
FAQ
What is AnyDesk/TeamViewer Remote Access Scam?
It’s a fraud where criminals trick you into installing AnyDesk/TeamViewer and sharing the access code, allowing them to remotely control your device and steal money or sensitive information.
How does it work?
The scammer impersonates bank/KYC/support, creates urgency, gets you to install a remote access app, collects the unique access code, and then uses remote control to trigger transactions and capture OTPs or trick you into entering your UPI PIN.
How to protect?
Never share remote access codes, OTPs, or UPI PIN. Don’t install remote access apps on request from unknown callers. Verify customer care numbers from official sources. If installed, disconnect, uninstall, revoke permissions, and secure banking credentials.
How to report in India?
Call 1930 immediately and file a complaint on cybercrime.gov.in. Also inform your bank and share transaction details and evidence.
Final checklist (quick reminder)
- Banks do not need remote control of your phone.
- AnyDesk/TeamViewer access code = control of your device.
- Urgency + “download this app” = high-risk scam.
Check any suspicious message free at bharatsecure.app.
Related Scam Alerts
Related Scams in Our Database
- Drive-by NFC Skimming — Severity: MEDIUM
- Counterfeit Check Scam targeting Nonprofits — Severity: HIGH
- Bank Account Freeze Scam (Fear Tactics) — Severity: HIGH
Verify Any Suspicious Message
Check any suspicious message, link, or call for free at bharatsecure.app.