Vishing Attacks

What is Vishing?

Unlike email phishing attacks (where the goal is to get you to point your web browser to a fraudulent site by clicking on a bad link), vishing employs:

  • text messages,
  • phone recordings, and:
  • email to persuade customers to dial a telephone number or respond to a telephone call.

The fraudsters may say your account is suspended, deactivated, or terminated.

What do Fraudsters say?

Fraudsters tell customers to contact their credit union/bank at a fraudulent phone number, which is provided in an email or by a recording using Voice over Internet Protocol (VoIP) technology.

During the call, the fraudster asks you to provide your card number and other information.

What about text messages?

Since fraudsters constantly vary their scams, beware of text messages, emails, and telephone calls or recordings requesting confidential data.

What steps can I take to protect myself?

  1. Do you know the sender of the email?  If yes, continue to be cautious before clicking a link. If no, do not click any links.
  2. Have you checked the link? Mouse over the link and check the URL. Does it look legitimate or does it look like it will take you to a different website?
  3. Does the email contain grammatical errors? If so, be suspicious.
  4. Are there any attachments in the email? If so, do not click on the attachment before contacting the sender to verify its contents.
  5. Does the email request personal information?  If so, do not reply.
  6. If you have a relationship with the company, are they addressing you by name?

VBSFCU does not request personal account information by text message, email, or automated phone call.

Do not respond to any unsolicited texts, emails, pop-ups, or links asking for your personal information of any kind.