As I've spent a lot of blogging time here, here and elsewhere on cold-calling/support desk scams, I didn't think I could let the recent flurry of publicity on Microsoft's disavowal of one of its Gold Partners because of their alleged implication in this kind of scam. I gave my own take on the topic at Securiteam, so I won't repeat it here, but Aryeh forwarded some relevant links from other sources (thanks, Aryeh!):
- http://www.crn.com.au/News/274273,indian-partner-fingered-for-microsoft-pc-support-scam.asp
- http://securitygarden.blogspot.com/2011/09/microsoft-removes-gold-certified.html
- http://nakedsecurity.sophos.com/2011/09/21/microsoft-dumps-partner-telephone-support-scam/
- http://it.slashdot.org/story/11/09/21/2237207/Microsoft-Dumps-Partner-For-Fake-Support-Call-Scam
David Harley CITP FBCS CISSP
ESET Senior Research Fellow