Vishing. It is a fraudulent practice that is carried out through telephone calls or voice messages, to deceive people and obtain private information, such as passwords, personal data or financial data. To achieve this, the attackers pose as trusted entities, such as banks, government institutions, or other companies. Sound familiar? Yes, it’s another social engineering technique.
These types of attacks are so effective and evolved that awareness to prevent them plays a fundamental role. Therefore, caution should be exercised when receiving calls or voice messages from strangers and be suspicious, especially if they ask for personal information.
Tips to keep in mind to avoid falling for these types of attacks
- Logic and verification of sources: exercise caution when providing our personal information. Keep in mind that banks and companies will not request sensitive data.
- Do not open suspicious messages: characterized by requests for operations with insecure links.
- Be wary of calls from unknown numbers: you should always verify the origin and check the reason for the call. In turn, it is important not to share information without being sure who you are talking to.
- Block repeat offending numbers: in order to avoid insistence on identity theft and proceed to report the number for its disabling.
From INSSIDE we carry out personalized awareness campaigns with the aim of evaluating the level of security maturity of the organization’s collaborators, contributing to the identification of fraudulent cases and deceptive scenarios.