In April 2020, after the rise of Cyber Crime especially through the use of Remote Desktop Software or Remote Screen Share App, Paytm had sensitised its customers to uninstall the apps like TeamViewer and AnyDesk to avoid frauds by using these software/apps. The Fraudsters in the Paytm case were luring the users to download the spurious apps to undertake a KYC. Once the user has installed the app, the fraudsters were then seen to be getting the remote access to the devices of the victim after the nine-digit code is shared with them. Subsequently, the fraudsters perform the transactions to extract money from the Wallet or from the Bank Accounts linked to the wallet and thereby cheat the victims.
These types of crime are not only performed to take control of the wallets installed but also to take control of other types of secure application on the victim’s smartphone. Analysis of over 700 complaints of cyber crime received at cyber police station, Shimla in the month of Jan –Feb – Mar 2021; it has been revealed that the innocent victims are being fleeced of their savings through the use of such apps after enticing them through social media platforms.
The miscreants contact innocent people through social media and voice calls and enforce the need of revalidating of performing a KYC validation or update for the mobile; they also caution them that the process is necessary or their phone or their app account would stop working. Further, the victims are then forced to install apps or made to click on links that provide Control of the Victims Remote Screen to the attacker. This then installs ‘Team Viewer’ and ‘AnyDesk’ or any other app that provide control of the device to the attacker.
How to Protect Oneself from Remote Desktop/Screen Capture Frauds
- All apps installed on the Smartphone should be securely managed with password/PIN.
- Do review the policy of all the apps that are installed.
- All financial apps or those that have financial implications should be installed with adequate security measures.
- Do not entertain any suspecious calls or receive messages that seek downloading of apps or update them.
- Do not share the OTP or Share-code with anyone.
- Do not click on links and messages without verifying them.
- If an app is to be installed, do review the policy and permissions.
- Do not forward any SMS or OTP or Links to people as forwards.
- If in case you have inadvertently fallen victim, do call the Bank or Wallet Service Provider and seek help