SC Magazine on Friday published a story "Phishing scheme dupes bank customers into forwarding phone calls". It's worth a read since it describes a new variation on vishing attacks.
The article describes the attack as follows:
"
The scam email asked recipients to verify their phone number with their bank, but the number they were asked to dial call forwards calls to a foreign number. The email threatened to suspend the account if the number wasn't verified.
In the scheme captured by SecureWorks, the calls were forwarded to a line in Germany.
If the recipient is duped, the scammer gains access to all incoming phone calls until the victim realizes phone service has been suspended. The scammers can also call victims to say the account information has been "verified."
"
The article further describes the email and web page used "The phishing email also contained security advice and password and username tips for increased security – just like many authentic bank page".
Never, ever click on a link in an unexpected email or, call a phone number in the email or off the web page linked in the email. Otherwise, you may experience identity theft, lose your authentication information and experience financial theft.
Guy
www.authenticationworld.com
guy.huntington@authenticationworld.com
del.icio.us