Our threat database is updated automatically and currently blocks 255 known threats across remote access tools, remote access trojans, and data exfiltration utilities. Here's what we protect you from — and why.
Remote access scams are the fastest-growing fraud category in Australia. Scammers call victims pretending to be from Microsoft, their bank, the ATO, or a tech support company. They convince the victim to download a remote access tool — usually AnyDesk, TeamViewer, or Quick Assist — and once connected, they have full control of the computer. From there, they access bank accounts, steal personal data, and drain savings.
According to the National Anti-Scam Centre, Australians over 65 lost an average of $17,943 per successful scam of this kind in Q1 2024. The tools themselves are legitimate — that's what makes them so dangerous. Antivirus software won't flag AnyDesk because AnyDesk isn't malware. But in the hands of a scammer, it's a weapon.
RemoteShield solves this by blocking the tools before a scammer can use them. The moment a blocked application starts, RemoteShield terminates it — no user decision required, no dialog to click through, no chance for the scammer to talk the victim into allowing it.
Legitimate software that scammers weaponise to take control of victims' computers.
RemoteShield doesn't just block the obvious ones. We block the entire ecosystem of remote access tools that scammers are known to use, including enterprise IT management tools that have been weaponised in recent campaigns.
These are IT management platforms designed for businesses. Scammers and ransomware operators have increasingly hijacked them — RMM abuse rose 277% in 2025 according to Huntress.
Malware specifically designed to give attackers hidden remote control of a victim's computer. Unlike the legitimate tools above, these have no legal use.
RemoteShield uses multiple detection layers so threats can't hide behind renamed files or disguised installers.
anydesk.exe, it's blocked before it can open a connection.anydesk.exe to helper.exe, our regex patterns still identify it by its internal structure.The threat database updates automatically every 12 hours. When our researchers discover a new tool being used in scams, it's added to the database and pushed to every RemoteShield installation — no action required from you or your IT support.
Updates are cryptographically verified using SHA-256 hashes before being applied. If an update fails verification, it's rejected silently and the existing database continues protecting you. You're always protected, even if something goes wrong with an update.
RemoteShield includes a whitelist feature. If your IT support provider uses a specific tool like Quick Assist or Splashtop to help you remotely, they can add it to the whitelist during installation. That specific tool will be allowed while everything else stays blocked. This way your trusted technician can still help you, but scammers using any other tool are still stopped.