New Type of Email Scam - "Voice Phishing"
Be on the lookout for a new type of Phishing scam that involves the use of telephone numbers as opposed to email hyperlinks that take you to a bogus website.
Two big incidents involving spam emails urging people to call a phone number to verify account information have been discovered within the past two weeks, indicating that “voice phishing” may soon become a popular new tool for internet criminals.
The first of these voice phishing scams was reported on June 23, 2006 by Santa Barbara Trust, when people started receiving forged emails with the subject line "Message 156984 Client's Details Confirmation (Santa Barbara Bank & Trust)." Unlike the traditional phishing email that includes a hyperlink leading to a fake website, this one urged customers to call a certain phone number to verify account details. When victims dial the phone number, a recording requests that they enter their account number. Since the phone number belongs does not belong to the bank, users who key in account details are handing this confidential information to the thief.
On July 7, 2006 a similar scam involving fake e-mail from PayPal. Identity thieves sent out spam email messages warning people that their PayPal account has been compromised. Instead of the usual “click here and log on to your account” phishing link in the email, these messages urge the recipient to call a phone number to verify their account details. Just like the earlier case involving Santa Barbara Trust, callers are greeted with a recording that says something like “welcome to account verification, please enter your 16 digit account number”.
Both phone numbers appearing in these scam emails were a Southern California (805) area code, but there could very well be others.
When something like this starts a lot of “copycats” usually follow, so watch out for this type of scam in your inbox.
Two big incidents involving spam emails urging people to call a phone number to verify account information have been discovered within the past two weeks, indicating that “voice phishing” may soon become a popular new tool for internet criminals.
The first of these voice phishing scams was reported on June 23, 2006 by Santa Barbara Trust, when people started receiving forged emails with the subject line "Message 156984 Client's Details Confirmation (Santa Barbara Bank & Trust)." Unlike the traditional phishing email that includes a hyperlink leading to a fake website, this one urged customers to call a certain phone number to verify account details. When victims dial the phone number, a recording requests that they enter their account number. Since the phone number belongs does not belong to the bank, users who key in account details are handing this confidential information to the thief.
On July 7, 2006 a similar scam involving fake e-mail from PayPal. Identity thieves sent out spam email messages warning people that their PayPal account has been compromised. Instead of the usual “click here and log on to your account” phishing link in the email, these messages urge the recipient to call a phone number to verify their account details. Just like the earlier case involving Santa Barbara Trust, callers are greeted with a recording that says something like “welcome to account verification, please enter your 16 digit account number”.
Both phone numbers appearing in these scam emails were a Southern California (805) area code, but there could very well be others.
When something like this starts a lot of “copycats” usually follow, so watch out for this type of scam in your inbox.
posted by Tech Angel at 2:20 PM
0 Comments:
Post a Comment
Links to this post:
Create a Link
<< Home