Vishing is a type of social engineering fraud. From a call, the identity of an organization or trusted person is impersonated in order to obtain sensitive information from the victim, such as bank details.
Previously, from another fraudulent action such as phishing, the cyber attacker obtained other data, such as name, email, telephone, etc. The attacker will use them to gain her trust and deceive her more easily.
It must be said that, with technologies such as artificial intelligence, the attacker could imitate the voice of a friend or relative of the victim and convince her without difficulty.
Watch the video
Some examples
- They call supposedly from the bank, alerting you that you have suffered a fraudulent action on your account or another serious incident, and to solve it they ask you for your card details or the key from an SMS you have received.
- They call, supposedly from your service or supply company, to tell you that there was an error on the invoice and ask for your bank details to return the money.
- The victim offers products over the internet. The attacker pretends to be a potential interested buyer and asks for bank details to speed up payment.
Prior recommendations
- Avoid sharing personal information on the internet and networks that could be useful to cyber attackers.
- Request detailed information about the interlocutor, to verify the origin of the call: name, identification, etc.
- Be suspicious if they ask you to act urgently and threaten you with the possible consequences of not doing so.
- Be suspicious if they ask you for personal information, even if a name comes up associated with the call. The attacker can spoof the caller ID to make it appear to be trustworthy.
- Never give out bank details, social security numbers, passwords or other sensitive information over the phone.
- Do not follow links or download files from unsafe sites.
What to do if you have been cheated
- Immediately notify the security forces, the bank or the company whose data you have disclosed.
- Modify the access passwords to your profiles and services.
- Keep an eye out for possible fraudulent movements and alert your contacts as well.
Update:
22.07.2024