Fake Support groups use Live Operators to Install Malware

The ISC reports this development, which continues to illustrate the need to be cautious in trusting others.  An unsolicited phone call and following these instructions could lead to a real virus (e.g., Fake AV) being installed on your computer.  Security Awareness should certainly be emphasized and taught as noted in the last quoted paragraph. 

Bogus Support Organizations use Live Operators to Install Malware
http://isc.sans.edu/diary.html?storyid=9139
http://www.pcpro.co.uk/news/security/359233/the-unstoppable-tech-support-scam
http://www.pcpro.co.uk/news/security/356833/pensioner-targeted-by-fake-virus-phone-scam

QUOTE: Drew, one of our readers, wrote us let us know about a new scam being used to spread malware - - well, ok, not so new, but certainly new to me and becoming more popular, enough that it should be on your radar.

Picture this - you're surfing away, and your phone rings.  A person claiming to be from a support company or in some cases a "Registered Microsoft Support Partner" (note that Microsoft does not use this term, it's a made-up designation) tells you that you have a virus, and that for a few hundred in your favourite currency, they'll clean your computer for you.

After digging a bit, some of these scams seem to be run from locations in India (but most likely not all of them), but when they call your phone, they'll most likely have an area code in your country.  They also take advantage of VOIP services to keep their costs low and profits high.

There is no good protection against things like this except for user education in security awareness.  Especially in corporations, this should be an ongoing effort, and things like phishing, vishing, fake antivirus and the like should be presented to your user community for what they are as frequently as possible.