'Vishing': Dialing for Dollars

Long before email and phishing scams, criminals were using public telephone networks to trick people into giving away their financial and personal information. Last week, security experts spotted another sign that crooks are finding success in scams that marry new and old technologies.

Most phishing scams start with an e-mail that for one reason or another instructs recipients to "update" their account information by entering personal and financial data at a (counterfeit) Web site linked to in the message. An e-mail scam spotted last week by online security vendor WebSense and the folks at CastleCops directs recipients to dial an 800 number, where a recording requests that callers enter their bank account number using a touch-tone phone. You can read more about this scam here. WebSense also has recorded a .wav file of the message. Security Fix - Brian Krebs on Computer and Internet Security - (washingtonpost.com)

Linked by shanmuga Tuesday, 27th June 2006 1:39AM