Even though Caller ID Spoofing was Made Illegal in the USA – people will still continue to do it, remember the FCC said it’s still easy to spoof caller ID. This scam as always includes some Social Engineering, it’s not that easy after all to get people to give up their important info over the phone.
Scams involving email and fake banking websites may get all the attention, but a recent rash of fraudulent phone calls shows criminals haven’t given up on more traditional tools for tricking people into surrendering credit card numbers and other sensitive information.
The calls begin with a recording that makes a tempting offer – usually for a lower credit-card interest rate or an extended car warranty – and then invite the caller to speak to a live agent. The agents then ask for information including the credit card number and expiration, name, address, and in some cases social security number and other data. Recipients who have fallen for the ploy report finding charges as high as $900 on their credit card.
So be careful, don’t be tempted by lower credit card rates or any kind of nonsense offers that you receive from strangers. Honestly I don’t believe any readers of Darknet would fall for this kind of thing..but as always educate those you aren’t so savvy and you are doing your part.
The surge of calls come as security researchers report an up-tick in so-called vishing attacks, which use VoIP, or voice over IP, to trick people into turning over banking credentials and other sensitive data. Last fall, more than 12,000 people in Texas were targeted in a scam that attempted to capture their account details for eTrade and two local banks, according to a recent report from iSIGHT Partners.
Vishers typically set up demo accounts with one of the many VoIP providers, carry out their attack and then move to another provider. The attacks observed in the report were different from the recent scam, however. They typically rely on emails that encourage recipients to call an automated number and manually enter their account information.
It’s worrying, people are getting spammed, scammed and phished from every direction now. All these frauds and spammers are making technology more complex and polluting the Internet with stuff like CAPTCHAs.
I guess it’s here to stay though, so we have to accept with it and deal with it as best we can.
Source: The Register
Recent in Social Engineering:
- Social Engineering Vulnerability Evaluation and Recommendation Project
- VeriSign Demands The Power To Take Down Websites/Domains
- The Social-Engineer Toolkit (SET) – Computer Based Social Engineering Tools
- Indian Credit Card Fraud Exposed – Linked to Symantec
- Graph Analysis of Credit Card Loss
- Scammers Using Asterisk VoIP Systems to Make Calls
Most Read in Social Engineering:
- How to get Ops and takeover a channel on IRC Hack Hacking - 166,901 views
- Domain Stealing or How to Hijack a Domain - 38,157 views
- Michael Jackon Spam/Malware – RIP The King Of Pop - 25,492 views