Wrinkled Weasel has a post on 'grey' internet scams - behaviour by legitimate companies that is borderline immoral but not strictly breaking any rules. This reminded me of an incident here the other day.
I was called by a company calling itself 'Tech My Support' (an odd word-order to start with), who told me they had identified problems with my computer and offering to assist me to clear them. The female caller had a heavy Indian accent, and I was suspicious. Well, more than suspicious. I'm not an expert in the inner workings of the internet, but I am pretty sure that a) it is not possible to scan my computer for corrupted files remotely unless I give someone permission, and b) that if any organisation were able to do this, they would not be ringing me to tell me about it.
I played along, making like I was an old codger without a clue. Yes, I had experienced serious problems with my computer, and thank you so much for calling me. I introduced a couple of red herrings to make sure that they were lying: I got them to confirm that the computer is a Dell laptop (it isn't) and that I was running windows 7 (it isn't). They also told me that there were four computers accessing the internet from this house, which means that they have performed some voodoo magic on the old Dell desktop that hasn't been switched on for three years. I had some fun with them for half an hour or so, and then did the classic trick of saying "back in a minute" and then leaving the phone on the kitchen worktop. They were still on the line even after 10 minutes of that, so I got the dog to bark loudly into the handset and then put the phone down.
The following day, at the same time, they called again. Same lady calling ("Hello, this is Debbeeee") and same 'senior technician' that she put online when I asked her some awkward questions. They swore that they had never called me before, and started on the same script, so I hung up. That night, at the TOMCC pub meet, I mentioned this, and another member had had exactly the same call last month.
The method is quite clever. They ask you to turn your computer on, and then get you to do certain harmless things which 'prove' that the computer is corrupted. In this instance, they got me to look into Event Viewer, which is always full of random errors and warnings. If you have no knowledge of how computers and the internet work, you could well be taken in. Once they have got you convinced that your computer is infected and believing that they are able to fix it remotely, they will try to get you to log into a website which they spell out for you. My guess is that this is where the remote access permission will be given, and the trouble will start.