Microsoft, Facebook Support Services A Scam, FTC Says - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

12:30 PM
Connect Directly

Microsoft, Facebook Support Services A Scam, FTC Says

FTC shutters company that allegedly duped consumers out of $2.5 million by falsely detecting computer viruses and selling bogus software.

10 Wacky Kickstarter Projects That Succeeded
10 Wacky Kickstarter Projects That Succeeded
(Click image for larger view and slideshow.)

A federal court has shut down a company that posed as representatives of Facebook and Microsoft to dupe people into paying hundreds of dollars for bogus technical support services, the Federal Trade Commission announced.

Pairsys, a New-York-based company, reportedly built a business on cold-calling consumers since at least February 2012, pretending to represent companies such as Facebook and Microsoft, the FTC's complaint said. Representatives would trick users into believing that their computers were infected with viruses or malware, or were corrupt, in order to install remote access software, according to the document.

Once a victim allowed a representative to access his or her computer remotely, the representative would run a scan that detected errors and vulnerabilities, regardless of whether or not they existed, the FTC said.  

[Snapchat settles with the FTC. Read 5 Ways Snapchat Violated Your Privacy, Security.]

"For example, sometimes Defendants bring consumers' attention to a discovered 'error' with rundll32.exe and consumers' network firewalls," the FTC explained. "Defendants show customers a popup that they claim indicates that consumers' network firewalls have crashed."

Pairsys reps showed consumers a popup that they would claim indicated that consumers' network firewalls had crashed.
Pairsys reps showed consumers a popup that they would claim indicated that consumers' network firewalls had crashed.

The representative would then try to sell people long-term security or technical support services, perform "repairs" for between $149 and $249, and would charge some people as much as $600 for the bogus products, the FTC said. The FTC's filings allege that the company made nearly $2.5 million since early 2012.

"The defendants behind Pairsys targeted seniors and other vulnerable populations, preying on their lack of computer knowledge to sell 'security' software and programs that had no value at all," said Jessica Rich, director of the FTC's Bureau of Consumer Protection. "We are pleased that the court has shut down the company for now, and we look forward to getting consumers' money back in their pockets."

If Pairsys is found guilty, the FTC wants the company shut down permanently, and for it to refund the people who paid for the service, it said. Facebook reportedly tipped off the FTC to Pairsys's scam.

Tech support scams aren't uncommon. In 2012, the FTC launched a crackdown on telemarketers who masqueraded as major computer companies such as Dell, Microsoft, McAfee, and Norton, in order to "fix" consumers' computers that they said were infected.

"The FTC has been aggressive -- and successful -- in its pursuit of tech support scams," said FTC chairman John Leibowitz at the time. "And the tech support scam artists we are talking about today have taken scareware to a whole other level of virtual mayhem."

The FTC found that the operations were mostly based in India and targeted English-speaking consumers in the US, Canada, Australia, Ireland, New Zealand, and the UK. Victims were charged fees ranging from $49 to $450, the FTC said.

Considering how prevalent third-party attacks are, we need to ask hard questions about how partners and suppliers are safeguarding systems and data. In the Partners' Role In Perimeter Security report, we'll discuss concrete strategies such as setting standards that third-party providers must meet to keep your business, conducting in-depth risk assessments, and ensuring that your network has controls in place to protect data in case these defenses fail (free registration required).

Kristin Burnham currently serves as's Senior Editor, covering social media, social business, IT leadership and IT careers. Prior to joining InformationWeek in July 2013, she served in a number of roles at CIO magazine and, most recently as senior ... View Full Bio

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Number 6
Number 6,
User Rank: Moderator
10/29/2014 | 10:13:30 AM
Not New
I first got one of these calls a couple years ago. I'm glad this is finally getting media coverage.

My first question when they call is to ask which IP address they got the error from, because "I have several servers here in our corporate development lab." That usually stumps them, although another time the "supervisor" with an Indian accent got on and tried claiming this was a serious condition. When I told him I develop networking software, he tried challenging my credentials. LOL.
User Rank: Ninja
10/28/2014 | 12:41:51 AM
Re: jurisdiction
Looks like they've ended $2.5 millions of dollar of fraud in the support business, which probably leaves about $10 billion to go. And, a quick google search reveals that neither of the two perpetrators are in jail. No doubt they've already restarted anew under a new name. When I get called by characters like these my favorite thing is to string them along for a bit, let think they've got one on the line, hit 'em with a schoolyard insult, and hang up before they get a chance to verbally retaliate, Causes great frustration and ruins their day!
Kristin Burnham
Kristin Burnham,
User Rank: Author
10/27/2014 | 8:49:02 PM
Re: jurisdiction
@vnewman2 ha--would have loved to hear that conversation. They picked the wrong person in that situation...
User Rank: Ninja
10/27/2014 | 6:31:04 PM
Re: jurisdiction
@mak63 - Great question and I'm guessing the answer is no.  

We recently had a report of one of these scammers trying this scheme on one of our litigation attorneys who had a field day putting they guy through 100 questions until he hung up.

User Rank: Ninja
10/27/2014 | 4:25:21 PM
"The FTC found that the operations were mostly based in India and targeted English-speaking consumers in the US"

I'm glad that the FTC is going after these people, especially those here in the US, like Pairsys. Nevertheless, does the FTC have any jurisdiction with scammers not in the US?
2021 Outlook: Tackling Cloud Transformation Choices
Joao-Pierre S. Ruth, Senior Writer,  1/4/2021
Enterprise IT Leaders Face Two Paths to AI
Jessica Davis, Senior Editor, Enterprise Apps,  12/23/2020
10 IT Trends to Watch for in 2021
Cynthia Harvey, Freelance Journalist, InformationWeek,  12/22/2020
White Papers
Register for InformationWeek Newsletters
The State of Cloud Computing - Fall 2020
The State of Cloud Computing - Fall 2020
Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you.
Flash Poll