VISHING

Social engineering is collecting information for bad intentions using several methods. One of these methods is vishing which is (a hybrid of “voice” and “phishing”) which happens when the hacker tries to acquire information such as username, password, or ID via phone calls. The goal of the vishing attacker is usually to steal financial information. With vishing, the attacker will pretend to represent a legitimate or governmental entity such as the police, bank, or a person that is trusted by the victim. The attacker will try hard to convince the victim to gain what he wants in many ways. He may pretend to offer help or call the victim pretending as someone from technical support. Because stopping vishing is difficult using technology, for that purpose the awareness of such attacks should increase 

Guidelines for preventing vishing attacks:

• Don’t reveal sensitive information

• Verify phone numbers that pretend to be from a specific company

• Don’t give remote computer access

• Don’t be confident with any caller who requests personal information

Try to update your knowledge continuously about the attacker’s approaches to acquiring information to avoid the consequences that result from such an attack.