Quick Assist Code Sharing Traps

You’ve seen the pop-up: “Your computer has been infected with a virus. Call Microsoft Support immediately at 1-800-…” It’s a lie, but it works. Every year, thousands of middle-class Americans lose money to tech support scams. The latest twist? Scammers have weaponized Microsoft’s own legitimate remote assistance tool—Quick Assist—to gain unfettered access to your computer, your bank accounts, and your identity. If you are between 45 and 64, you are a prime target. Here is how the trap works and how to spot it before it’s too late.

Quick Assist is a built-in Windows utility that allows someone you trust—like a tech-savvy friend or a company’s IT department—to take control of your screen remotely. It’s designed for convenience: you share a six-digit code, they connect, and they fix your problem. Scammers have turned this legitimate feature into a one-way ticket to your digital life. The fraud starts the same way as any old-school tech support scam. You get a phone call, a text message, or a browser pop-up claiming your computer has a critical security flaw. The caller says they are from Microsoft, your internet provider, or a well-known antivirus company. They sound professional, urgent, and helpful. They ask you to press the Windows key and type “Quick Assist” into the search bar. Then they instruct you to enter a code they provide. Once you do, they have full control of your machine.

Here is what happens next. The scammer does not fix a virus—because there was never one. Instead, they open your bank’s website, download fake receipts, or generate a counterfeit refund for “overcharged services.” They might show you a fabricated transaction of $499.99 and say, “We need to reverse this. But first, we accidentally sent you too much. Please send back the difference via gift cards.” You obey because you want your money back. By the time you realize the refund was fake, you have bought hundreds or thousands of dollars in gift cards and read the numbers to a stranger over the phone. Or worse, the scammer installs keyloggers, steals your passwords, and drains your savings while you watch, unable to move the cursor.

Why is Quick Assist so dangerous? Because it bypasses the usual red flags. You are not downloading unknown software or clicking a shady link. You are using a tool that came with your computer. Scammers know that middle-aged and older users trust Microsoft’s branding. They also exploit your natural desire to fix a problem quickly. When a “tech support agent” says, “Just enter this code, ma’am, and I’ll have it sorted in two minutes,” it feels safe. It is not safe. It is a front-door key they never earned.

The Federal Trade Commission reports that tech support scams cost Americans over $1.5 billion annually. The Quick Assist method is a growing share of that figure because it is so effective at bypassing your guard. The scam works best when you are flustered, tired, or anxious. The scammers know that. They also know you might not have a tech-savvy child or grandchild at home to ask for a second opinion.

Here is how to protect yourself. First, never give a Quick Assist code to anyone who contacts you unsolicited. Legitimate companies like Microsoft, your bank, or your internet provider will never call you to announce a computer problem. If you get a pop-up warning about a virus, close your browser completely. Do not call the number on the screen. Instead, run a genuine antivirus scan if you are worried. Second, hang up the phone. If someone calls and claims to be from tech support, say “I’ll call you back at the company’s published number” and do exactly that. Any legitimate technician will understand. A scammer will pressure you to stay on the line. That pressure is your signal to end the call. Third, enable multi-factor authentication on your bank accounts. Even if a scammer gets your password, they cannot log in without your phone or authenticator app. Fourth, remember that no legitimate company will ever ask you to pay for services with gift cards, wire transfers, or cryptocurrency. That is a 100% scam indicator.

If you have already shared a Quick Assist code and suspect you are being scammed, disconnect immediately. Shut down your computer. Then call your bank to freeze your accounts and report the incident to the Federal Trade Commission at ReportFraud.ftc.gov. Change all your passwords from a clean device, like a phone or a friend’s computer. You should also run a full malware scan on your machine to check for hidden software that could persist after the remote session ends.

Quick Assist is a tool, not a threat. But in the wrong hands, it becomes a weapon. The scammers are counting on your politeness, your trust, and your fear. Do not give them what they want. When you hear the words “Quick Assist code,” stop. Ask yourself: Did I call them? Do I know them personally? Is this how real help works? The answer will save you hundreds, maybe thousands, of dollars. Stay sharp, stay suspicious, and never let a stranger into your computer.