Using Remote Access Software Safely

Remote access software can be an incredibly helpful tool, but it can also be leveraged by cybercriminals for various cyberattacks. This guide will explain how to use remote access software safely.

What Is Remote Access Software?

Remote access software allows users to access and control a computer or a network from a remote location. It enables users to view and interact with a computer's desktop, applications, and files as if they were sitting in front of it. Remote access software is commonly used for technical support, collaboration, remote work, and accessing files or programs stored on another device.

Use Trusted Software

Many bad actors will attempt to gain access to your personal devices via remote access softwares. Trusted remote access softwares can vary across providers (e.g. AnyDesk, TeamViewer, and LogMeIn), but they all provide basic levels of security, such as end-to-end encryption.

When downloading or using remote access softwares, be wary of results on search engines that are “sponsored,” as they can be artificially boosted and may be malicious in nature. As remote access softwares have gained popularity among bad actors, it is important to find providers with good reputations. BlackCloak will only ever ask you to use AnyDesk, as this is the remote access software we trust. BlackCloak also monitors remote access software and will send you an alert to ensure you are protected from tech support scams.

Added Protection

Just because you use AnyDesk, or another trusted remote access software, does not mean you are safe. It is important to make smart decisions and take preventative measures to ensure bad actors can’t gain control.

First and foremost, ensure the legitimacy of the person or organization attempting to obtain remote access is the best method of protecting yourself. Remove software after use and re-download it again if it is needed, set up terms of engagement around the use of remote access software with anyone requesting access, and request that IT support will only contact you via their business email to set up sessions are other good ways of protecting yourself.

By following these guidelines, you can prevent miscommunication with trusted providers and lower the risk of malicious access.

FBI Suggestions for Protection

• Be cautious of customer support numbers obtained via online searching. Phone numbers listed in a “sponsored” results section are likely boosted as a search of Search Engine Advertising, and may be connected to a malicious actor.
• Do not give unknown, unverified persons remote access to devices or accounts.
• Do not download or visit a website that an unknown person may direct you to.
• Do not trust caller ID readings, as criminals often spoof names and numbers to appear legitimate. Let unknown numbers go to voicemail and do not call unknown numbers back.
• Never trust any company-tech or any entity requesting personal or financial information.

Have Legitimate Relationships
It is important that clients only give remote access to people or organizations with whom they have trusted relationships or rapport, such as BlackCloak. This can help decrease the risk of malicious access without one's knowledge. Many malicious individuals will attempt to form relationships or portray themselves as someone you know or have met in order to gain your trust. It is important to use your best judgment, however, if something feels suspicious, do not hesitate to reach out to the BlackCloak team. We will be more than happy to assist you.

Victims of Remote Access Attacks
If you do fall victim to a remote access software attack, please contact BlackCloak immediately. Part of this urgency is to rectify any possible damage done, however, another important aspect is that victims can often expect additional attempts after the initial attack. This is because scammers often share or leak their victim database information. The FBI suggests that victims should:

• Contact their financial institutions immediately by using the number on the back of your bank card or by visiting the institution in person.
• Take steps to protect their identity and accounts.
• Change all passwords if the scammer has had access to your device.
• Run up-to-date virus scan software to check for potentially malicious software installed by the scammers.
• Consider having your computer professionally wiped.