Anti-abuse · Updated May 2026

WinDesk against remote-support scams

Remote desktop software is misused in an underground economy for fraud, extortion and "findom" operations. WinDesk is explicitly not designed as a tool for these purposes — technically, contractually and criminally. We pursue abuse rigorously, also across borders.

What we do not tolerate

The following use cases are explicitly prohibited under the terms of service and result in immediate sanctions when discovered:

  • Tech support scams — fake "Microsoft", "bank" or "police" callers who get victims to install remote software in order to steal or extort.
  • Banking hijacks — takeover of online-banking sessions with simultaneous screen blackout (so the victim cannot see what is happening).
  • Romance scams with a remote component — relationship-building that escalates into requests to install remote software to "fix" the victim\'s computer or "manage" crypto wallets.
  • Findom operations — so-called "financial domination", in which perpetrators get victims to install remote software so banking apps and online shops on the victim\'s device can be operated by the perpetrator. Well-documented abuse pattern of AnyDesk.
  • Stalkerware-style surveillance — covert installation on the device of another person without their informed consent, particularly in domestic violence contexts.
  • Account takeover as a service — paid takeover of third-party accounts, crypto wallets, gaming accounts.
  • Industrial espionage and unauthorised data theft — access to systems for which the user has no authorisation.

Why WinDesk is technically unsuited for scams

WinDesk has been built from the ground up with abuse-protection in its architecture. Anyone planning to use WinDesk for the above operations will find that the software offers significantly worse tools for it than older competitors:

  • Capability-token model with default-off permissions — clipboard, file transfer and input injection are off by default. The host user must actively consent to each individual capability, and the consent is audited. Classic scam operations (operating a banking app remotely, dragging data over) require precisely those capabilities and are therefore visibly blocked.
  • Permanently visible session indicator — a banner on the host screen remains visible throughout the session and cannot be hidden, made transparent or clicked away by the remote technician. Screen-blackout hijacks become impossible.
  • Emergency-stop key combination — the victim can terminate the session client-side at any time, regardless of connection state.
  • Hardware-bound device tokens (TPM 2.0 / Secure Enclave) — device identities cannot be copied from a compromised endpoint to another. Account takeover via stolen credentials is significantly harder.
  • Immutable audit trail — every session, every capability grant, every file transfer is recorded in a write-once log. The logs are provided in full to authorities on request.
  • Anomaly detection — an account suddenly opening sessions from an unusual region, or making atypically high capability requests, triggers automatic reviews.

Anyone looking for a remote-desktop tool for scam operations does not pick WinDesk — it is explicitly engineered to sabotage exactly these use cases.

Criminal prosecution — Switzerland and international

Misuse of remote-desktop software is criminally codified in Switzerland and in practically every industrial state. Concrete provisions we reference vis-à-vis law enforcement in case of suspicion:

Swiss Criminal Code (StGB)

  • Art. 143 StGB — unauthorised obtaining of data (up to five years\' imprisonment)
  • Art. 143bis StGB — unauthorised access to a data processing system
  • Art. 144bis StGB — damage to data
  • Art. 146 StGB — fraud (in tech-support scams, romance scams, findom)
  • Art. 147 StGB — fraudulent misuse of a data processing system (in banking hijacks)
  • Art. 156 StGB — extortion
  • Art. 197 StGB — pornography (in relevant findom operations with image or video recordings)
  • Art. 305bis StGB — money laundering (in onward transfer of proceeds)

International framework

  • Budapest Convention on Cybercrime (ETS 185) — Switzerland is a contracting party. Enables accelerated international legal assistance in cybercrime cases with the 67 other state parties (incl. US, UK, the entire EU, Japan, Canada, Australia).
  • Bilateral mutual legal assistance treaties (MLATs) — Switzerland has MLATs with all major industrial states. Evidence handover and extradition requests are established paths.
  • Europol / Interpol channels — for organised or transnational operations we coordinate with the relevant international law enforcement unit.

Switzerland is not a data-protection haven for cybercriminals. Geographic distance does not shield perpetrators from criminal prosecution — the Budapest Convention and bilateral MLATs are designed precisely for this.

Are you a victim of a remote-support scam?

If you currently suspect or know that someone is remote-controlling your computer without your consent — or if you experienced this in the last hours or days — proceed as follows:

Immediately (in the next 5 minutes)

  1. Physically disconnect the network. Pull the LAN cable, switch off Wi-Fi (at the router, not just at the device). This ends the session immediately, regardless of the software.
  2. Shut down the computer entirely. Not just lock the screen. If the perpetrator installed keyboard macros, they could otherwise resume on wake-up.
  3. Call the bank by phone — if banking was open or you entered banking data. Use the number on the back of your bank card or from the official directory. Never a number that someone gave you on the phone.
  4. In case of imminent danger, call the police — 117 in Switzerland, 112 in the EU, 911 in the US.

In the next 24 hours

  1. File a criminal complaint. With the cantonal police or via cybercrime.ch (online reporting platform of NCSC, the Swiss cybersecurity authority). Filing is free.
  2. Change passwords — in this order: email (because it almost always receives reset mails for other accounts), banking, mobile provider, online shops, social media. From a different, clean device.
  3. Enable multi-factor authentication — wherever possible. Passkey/FIDO2 is the most robust variant.
  4. Have the computer rebuilt — either yourself (Windows Reset / macOS Restore) or by a trusted IT provider. Do not simply uninstall the software — remote-software scams often leave backdoors, keyloggers or modified hosts files.
  5. Preserve evidence — screenshots, chat logs, phone numbers, IBANs, crypto wallet addresses, timestamps. Everything you have. Do not delete, even out of shame.

Useful Swiss contact points

  • cybercrime.ch — official reporting platform of NCSC (National Cyber Security Centre)
  • ncsc.admin.ch — current warnings and support resources
  • skppsc.ch — Swiss Crime Prevention
  • Local cantonal police — emergency line 117, phone switchboard for criminal complaint
  • Victim Support Switzerland — opferhilfe-schweiz.ch, psychological and legal support

Important: what happened to you is not embarrassing. Remote-support scams are professionally operated, technically thought-through and target every education and age group. Fast reporting increases the chance that patterns can be traced and other victims protected.

Report abuse

You have indications or concrete evidence that someone is using WinDesk for a scam or other illegal operation? Email:

abuse@windesk.ch

With subject "Abuse Report" and as many details as possible:

  • Timestamp (date, time, time zone)
  • Device IDs, if known to you
  • Phone numbers, email addresses, social media profiles of the suspected parties
  • IBANs, crypto wallets, payment services that were used
  • Chat logs, screenshots, image captures
  • If you are a victim yourself: please indicate if you would testify (or that you would prefer the report to flow anonymously into our evidence chain)

We acknowledge receipt within 24 hours. In cases of imminent danger to life and limb we act promptly — in that case please call the police first.

Authority requests

Law enforcement agencies, courts and supervisory bodies: please use abuse@windesk.ch with the corresponding legal assistance request, production order or warrant. Foreign authorities: via the Swiss central authority (Federal Office of Justice, International Legal Assistance Section) under the Budapest Convention or bilateral MLAT.

WinDesk: built for legitimate professionals, hostile to scammers

Swiss legal framework, technically abuse-resistant, transparent towards law enforcement — and honest about how we handle suspected cases.

Security architecture Terms & acceptable use

Frequently asked questions on abuse and victim help

What to do if I suspect someone is remote-controlling my computer without my consent?

Act immediately: (1) Physically disconnect the network — pull the LAN cable, switch off the Wi-Fi. (2) Shut down the computer entirely, not just lock the screen. (3) If banking was open: call the bank immediately via the official hotline number (the one on the back of your bank card, not one given to you on the phone). (4) File a criminal complaint with the cantonal police or via cybercrime.ch. (5) Preserve evidence: screenshots, account numbers, phone numbers, email addresses, chat logs. Do not delete.

I installed AnyDesk/TeamViewer/WinDesk and someone on the phone wants access — what now?

Hang up. This is highly likely a tech-support scam, bank scam or romance scam. Legitimate authorities, banks or Microsoft never ask you over the phone to install remote software. If you already installed: uninstall it, change all passwords (especially banking, email, mobile carrier), notify your bank.

I believe someone is using WinDesk for illegal activities — where do I report it?

Email abuse@windesk.ch with subject "Abuse Report" and as much information as possible: timestamp, IP addresses if known, device IDs, chat logs, email exchanges. We investigate every tip. On confirmation we suspend the account and hand over evidence to law enforcement. If imminent danger: call the police first (117 in Switzerland), then notify us.

What does WinDesk do technically to make abuse harder?

Seven hard mitigations: (1) Capability-token model — clipboard, file transfer, audio are off by default and require active consent from the host user. (2) Permanently visible session indicator that the technician cannot hide. (3) Emergency-stop key combination that kills the session client-side. (4) Hardware-bound device tokens (TPM/Secure Enclave). (5) Immutable audit trail of every connection. (6) Multi-factor authentication with passkey support. (7) Automatic anomaly detection on atypical connection patterns. Details on the security page.

Does WinDesk hand over user data to law enforcement?

For legitimate, properly formalised requests from Swiss authorities: yes, to the extent legally required. For foreign authorities: exclusively via international legal assistance (in particular the Budapest Convention on Cybercrime, of which Switzerland is a contracting party) — not directly. We retain communication metadata in accordance with Swiss law (BÜPF) only as long as legally mandated, and hand over only what is legally requested. In cases of imminent danger to life and limb we act promptly and proactively.

Is my report handled confidentially?

Yes. We treat reports with the same discretion as a whistleblower notification. Your identity is not disclosed to the reported party. In a potential criminal complaint you would be listed as a witness if you so wish, or the report would be incorporated anonymously into the evidence chain.

I am law enforcement — how to contact WinDesk?

For Swiss authorities: abuse@windesk.ch with the corresponding legal assistance request, production order or warrant. For foreign authorities: please go through the competent Swiss central authority (Federal Office of Justice, International Legal Assistance Section) under the Budapest Convention or a bilateral MLAT. Direct requests from foreign authorities are not answered without Swiss intermediary.

What happens to a WinDesk account that was used for abuse?

Immediate account suspension, freezing of all audit logs for evidence preservation, handover of evidence to the competent Swiss law enforcement authority. In cross-border cases activation of international legal assistance. The account holder is informed of the suspension — unless an authority orders silent suspension to avoid compromising an ongoing investigation.

Why do you write this so explicitly on a marketing site?

Two reasons. First: anyone considering using WinDesk for a remote scam should know that this domain has documented exactly what happens next. Deterrence starts with clarity. Second: potential customers — Swiss fiduciaries, lawyers, doctors, SMEs — have the right to know that the tool they buy is not built in a way that harms them, and that we stand behind this position.