GPO Federal Credit Union

Crooks are endlessly inventive. As soon as one scam is discovered, another one takes its place. The latest innovation in identity theft is a variation on phishing called “vishing,” or voice fishing.

Similar to the typical phishing scam, vishing involves contacting potential victims by e-mail, phone, or text message, usually to alert them that there is a problem with their credit card account. Rather than directing their targets to a phony web page, vishing scammers ask their victims to call a phone number that will prompt you to verify your account information by entering it on the keypad. By doing so, you will become fair game for identity theft.

The new world of Internet telephone service has made Vishing possible. For one thing, it’s easy to establish a Voice over Internet Protocol (VoIP) phone number without the same level of verification required for a traditional phone line. Also, Internet phone service allows for automated random calling, so a large quantity of potential victims in a specific area can be targeted.

Most importantly, a VoIP phone number makes it easier for callers to mask their identity and location. Commonly known as spoofing, this practice makes vishing particularly effective. A criminal operating from anywhere in the world can give his potential victim a number to call that has the same area code, even the same prefix, as the financial institution with which that person holds an account. Believability is the identity thief’s bread and butter.

Phishing schemes have been widely exposed and as a result, people look at e-mails with certain suspiciousness. Vishing, however, is relatively new, and the request to call a phone number and offer personal information appears far less dubious to most people.

Vishing is a return to basics that uses peoples’ emotions, such as fear, panic and impulsiveness, against them. The typical vishing scam demands immediate action, yet taking said action will actually cause the breach.