Vishing

Vishing

This type of scam is called “vishing” (voice phishing). Scammers call pretending to be from a trusted organization—like your bank or a government agency—trying to trick you into sharing sensitive information, such as your credit card number, password, or Social Security number. Their goal is to steal your money or identity. 

How It Works

Imagine receiving a call from someone claiming to be your bank, saying, There’s an issue with your account. We need to verify your details to prevent fraud.” They may ask for your account number, PIN, or other private information. If you share this information, scammers can access your accounts or use it for fraud. 

Vishing

Examples of Vishing

  • Tax Scam Call: A scammer poses as an official from the tax revenue agency, claiming you owe taxes and must pay immediately to avoid legal action. Legitimate tax agencies do not demand payment over the phone. 
  • Bank Impersonation Scam: A fraudster pretends to be from your bank, warning about suspicious account activity. They request sensitive information like your account number or PIN—something a real bank would never ask over the phone. 
  • Tech Support Scam: A caller falsely claims your computer has a virus and offers to “fix” it by remotely accessing your device. This can lead to malware installation or identity theft. 
  • Workplace Impersonation Scam: A scammer calls pretending to be a manager at your company, using insider details to sound convincing. They might ask for sales figures, financial data, or access codes, putting company security at risk. 

Signs of Vishing

Signs of vishing (phone phishing) include: 

  1. Unsolicited calls from unknown numbers or organizations you didn’t contact. 
  2. Urgency or threats, like “act now or face legal consequences.” 
  3. Claiming that person is a Manager and needs urgent information. 
  4. Requests for personal information, such as bank account details or Social Security numbers. 
  5. Too good to be true offers, like winning a prize or receiving a free service. 
  6. Suspicious caller ID, which can be faked to look like a trusted source. 
  7. Unprofessional or evasive behavior from the caller, or they give vague answers. 
  8. Unusual payment requests, such as gift cards or wire transfers. 
  9. Asking for remote access to your computer, claiming it has a virus. 
  10. Lack of specific details that a legitimate organization would know. 
  11. Poor grammar or strange language used during the call. 

If you notice these signs, hang up and call the organization directly using a trusted phone number to verify the call. 

How to Stay Safe

Simple Things Anyone Can Do (Non-technical Awareness)

  1. Hang up and call back: If you get a call from someone asking for personal details, don’t give anything out. Instead, hang up immediately and call the company directly using the number from their official website or your statement. 
  2. Don’t share personal info over the phone: No legitimate company will ask you for sensitive information like passwords, bank account numbers, or Social Security numbers over the phone. 
  3. Take your time: Scammers often try to rush you, saying things like, “You need to act fast!” or “It’s urgent!” But a real company will never pressure you. If it feels rushed or suspicious, it’s okay to say NO and hang up. 

By staying cautious and double-checking any suspicious calls, you can keep your personal information safe. 

A Bit More Technical (Things you Can do by Yourself)

  • Use Caller ID and Call-Blocking Apps and block any spam calls phone number.Visit your service provider phone provider and ask them to teach you how to activate Scam detection on your phone. 
  • Don’t Trust Caller ID Alone, as it can be spoofed; always call back using an official number. 
  • Use Encrypted Communication (e.g., Signal or WhatsApp) for sensitive calls or messages. 
  • Limit Personal Information on social media to avoid giving scammers easy access to your details. 
  • Report Fraud calls to your local authorities.
  • Check for Data Breaches using services like “Have I Been Pwned” to see if your email has been exposed and how you can harden it.  
  • Ask a Tech person to help you set up a strong password on your phone and add Multifactor authentication (MFA) to access your email accounts.  
  • Always sign out of your web applications when you’re done. 

Vishing is a type of scam where fraudsters impersonate trusted organizations—such as banks, government agencies, or service providers—to trick you into revealing sensitive information over the phone. Their goal is to steal your personal data or money. Always verify the caller’s identity and never share confidential details without proper confirmation.