In the last few days, the vishing, a type of phone scam whose objective is none other than to steal the user’s data. Vishing, which arises from combining “voice” and “phishing”, is also known as the double call scam and the OSI (Internet Security Office), the OCU (Organization of Consumers and Users) and up to Civil Guard.
Next we will review what is “vishing” and what we can do to defend ourselves against these potential attacks.
what is vishing
To understand what vishing is we have to understand what phishing is. Phishing normally consists of deceiving the user by posing as a trusted platform, such as Amazon, Mercadona, Lidl, etc., to obtain your personal information, such as a credit card or ID. Have you ever received an email notifying you that you have won a thousand euros on Amazon and that you have to claim it on a website? Well that’s phishing.
Vishing, on the other hand, is a phishing technique using voice, that is, a call or, in this case, a double call. In the most recent case, a person calls us on the phone pretending to be our operator and notifies us of a rate increase. Then, we received a second call from someone who offers us a cheaper rate recommended by the OCU in order to obtain sensitive information, such as an account number or a DNI.
On other occasions we have seen this scam applied to Social Security, which contacts us to offer us a refund through Bizum. They call us, offer us a benefit for maternity, dependent children or X compensation of any kind and send us a message to receive payment by Bizum. It really is a request for payment and it is enough to look to realize, but we can have a false sense of confidence because, after all, “someone from Social Security” has called us to tell us.
Although they may seem new, these phone scams have been going on for many years
This, which sounds very bizarre, it’s nothing new at all. These scams have been going on for years, but they are always controversial again when they try to impersonate an important organization, in this case the OCU. And it’s dangerous because getting rid of the attackers is not as easy as blocking the numbers.
What can we do to protect ourselves from vishing?
The problem with this type of attack is that the attackers they change phones often, thus avoiding the possible filters that we can apply manually. However, there are things we can do to be more secure. Blocking numbers is a good option, but there is more.
The first: never, ever give out personal information over the phone. When in doubt, contact the bank or entity they may be posing as and confirm the information. Always do it through official channels.
The second, doubt. If you have received a call in which they tell you something harmful and, immediately afterwards, you receive another one offering you a benefit coincidentally too opportune and good, mistrust. Block the two numbers, find what data there may be about you on the network and exercise your rights of access, rectification, cancellation or opposition.
And third: calm, patience, temper and common sense. These types of scams play on our desperation and present us with an offer that is too good that we cannot pass up. In some cases they can be juicy things, but we have to act with common sense and not commit any impulsive act.
George is Digismak’s reported cum editor with 13 years of experience in Journalism