Last week my mum made a call to Orcon regarding some phone issues she had. During the conversation she might have mentioned her computer was slow to the tech. The next morning she received a call from a foreign number with a heavy indian accent claiming to be from Orcon. They were asking to speak to me (I'm the account holder) however I was unavailable

They began saying things like as if I told them my computer had viruses. She isn't too tech minded and was pressured into downloading TeamViewer having thought it was actually Orcon she was speaking to since they had knowledge of account details. She became suspicious later on in the call when they started claiming more bs statements like offering a $206 credit for being a bad ISP (lol?) and about the account bill being overdue, trying to get PayPal info etc.

As far as I can tell luckily she didn't actually use the TeamViewer program to link up with these scammers, only installed it from the official site (teamviewer.com), which was as far as she got before hanging up with "Orcon" who were saying they'll call back the next day.

This is troubling because unlike most cold caller scammers, these scammers specifically knew my Orcon details to make a convincing case to someone who is vulnerable. It's speculation but I believe it's more than just coincidence that whoever she talked to the day prior picked up on her lack of IT knowledge and vulnerability, and sent the account details to these Indian scammers. This wouldn't be too big a stretch either since Orcon's official level 1 customer service is in Manilla, Phillippines. It's possible they have a corrupt staff member giving out vulnerable customer information or even that their database is compromised.

I followed up on this with Orcon where they denied any knowledge of these calls, and when questioned about anyone accessing my account they say they don't have any security measures in place such as to determine the IP of whoever might have logged in my account either, only when staff members access the account. This is strange in of itself since you'd think an ISP would be able to log the IPs of account logins.

Not sure how to proceed from here, I've asked Orcon to send the recording of the initial phone conversation - the first rep I spoke to denied due to "security reasons" and the second rep agreed but said would take 10 days to process.