Voice-based phishing, or Vishing, is a type of cybercrime which is very popular nowadays. Cybercriminals use this method to acquire user information through phone calls to commit financial scams. The con artist may use this strategy to trick or manipulate the user into divulging crucial information.
The criminals will manipulate the caller identification data to seem to have originated from a reliable source by placing bogus calls and deceiving the users on a variety of pretexts, including
Linking of Aadhar with bank
Providing Free Gifts, Lotteries, and Prizes o
Performing KYC Updates
Vishing attackers may use a variety of strategies to trick their victims, such as pretending to be a customer service executive from a bank or gas agency, etc., or asking the user to scan a QR code in order to receive money. Additionally, vishing attackers may attempt to force users to call fake customer care numbers that they have updated on Google or even ask users to scan some QR codes in order to receive money. Vishing attackers may also ask users to scan some QR codes in order to receive money. The perpetrators of the attack may sometimes believe that their victims are calling the false customer service lines.
These are the warning signs of a Vishing attack
Instilling a sense of urgency in order to prompt quick action
Making use of scare tactics
Offering assistance while requesting private information such as OTPs, PINs, CVVs, expiration dates, etc.
Request that the victim install third-party applications so that they may connect to their device.
Dangers which customers may face due to Vishing attack
Hacking of accounts
Attack using malware
Disclosure of personally identifiable information, as well as its inappropriate use (PII)
Unauthorised access to devices and personal information
Methods of operation by scammers
The scam perpetrators make contact with the victim while appearing to be phoning from a reliable source, such as a bank, the IT Dept, a gas agency, etc. They solicit the victim’s bank account information and collect other sensitive financial data, such as card expiration dates and one-time passwords (OTP). After that, the con artist instructs the victim, in order to deposit the money, to share the OTP that was provided to their mobile device. The victim’s money is taken from their account once the OTP is shared. Be wary of phoney or fraudulent calls asking you to provide your account data and name and then ask for a one-time password to have the money deposited into your account.
Safety Measures to Avoid Getting Scammed
Never reveal your one-time password, personal identification number, or card verification value(CVV) to anyone else. Do not answer calls requesting you to confirm or share account/card/bank details or give personal information to get a prize/lottery/gifts/updating KYC etc. Do not give out personal information to win a prize/lottery/gifts or anything else. Do not contact the service provider phone numbers that you find randomly in search engines since there is a possibility that they are phoney numbers. Make use of the customer service telephone numbers found on the official websites of the various institutions, companies, banks, and so on. In the event of any incidence, the user should immediately either change the password of their account or ban their card and freeze their account to avoid any financial damage. Users should make it a habit to regularly monitor their bank and credit card accounts and report any discrepancies they find. Be wary of phone calls that want you to provide personal information or that ask you to install any remote desk software under the guise of assisting. If there is a problem, you should contact the bank and file a complaint about any regrettable events.
Visit the website at www.cybercrime.gov.in and call the toll-free number at 1930 to report any instances of cybercrime.