With COVID-19 still largely affecting how and where we work today, it’s important to stay up to date on any new malicious activity from online sources. Attackers have been adapting to the remote working situation and coming up with creative ways to defraud you of your personal information such as credit card numbers, social security numbers, bank accounts, etc. Amongst them is a new form of social engineering and online fraud that can give attackers admin access to your computing device or mobile phone.
This new scam utilizes screen sharing applications that allow the attacker to view or take control of the victim's device. Fraudsters can call you and pose as bank employees, tech support, or even customer representatives from well-known companies or our own company to trick the victim into thinking their account(s) were flagged for suspicious or fraudulent activity. Once a remote control application is installed, the attacker is given admin access to your computing/phone device(s), they can retrieve your credentials or banking information for their own use.
To protect yourself against this fraud, its recommended not to install any screen sharing applications like Screenshare, Teamviewer, or any other remote control software unless it is from a verified member of you company’s Information Technology Department. Additionally, unless the phone call was made to or from a trusted source, never give any personal information over the phone.