vishing


Also found in: Dictionary, Financial, Wikipedia.

vishing

(Voice phISHING) Also called "VoIP phishing," it is the voice counterpart to phishing. Instead of being directed by e-mail to a website, an e-mail message asks the user to make a telephone call. The call triggers a voice response system that asks for the user's credit card number. The initial bait can also be a telephone call with a recording that instructs the user to phone an 800 number.

In either case, because people are used to entering credit card numbers over the phone, this technique can be effective. Voice over IP (VoIP) is used for vishing because caller IDs can be spoofed, and the entire operation can be brought up and taken down in a short time, compared to a real telephone line. See phishing and VoIP.
References in periodicals archive ?
A vishing scam is where a fraudster contacts a person by telephone, convincing them that their bank account has been compromised, and then persuades them to transfer their funds into what they believe is a new holding account.
Furthermore, iPhone and Android users can reduce their phone spam nuisance levels and protect themselves from Vishing and Smishing threats with NUMBERCOP for iPhone available from the Apple App Store (http://www.
The topics include the latest trends in online fraud, such as phishing, vishing, the credit/debit card fraud types, modus operandi, counterfeiting and skimming etc.
Don't fall victim to the latest scam - vishing - by giving your bank details to strangers over the phone
Vishing involves a fraudster posing on the phone as someone from a bank or building society fraud investigation team, the police or another legitimate organisation such as a telephone or internet provider.
Detective Chief Inspector Dave Carter, head of the Dedicated Cheque and Plastic Crime Unit (DCPCU), which is sponsored by the cards and banking industries, said: "Fraudsters can use personal information gleaned from vishing in a number of ways including to access a victim's bank account, make fraudulent purchases and commit identity theft.
By harvesting the VoIP user directory, the hacker now gains a new list of VoIP subscribers that can be new targets to other VoIP threats, such as SPIT or vishing attacks.
The enhancement within this release consists of an additional topical course entitled Vishing, which is one of the latest fraud tactics employed by unscrupulous perpetrators.
In fact, some vishing attacks don't begin with an e-mail.
Users of Voice over Internet Protocol (VoIP) systems must be mindful not only of denial-of-service vulnerabilities in their VoIP PBX implementations, such as the vulnerability discovered in Asterisk, but underlying VoIP protocol weaknesses that may leave organizations open to vishing, a new security threat which uses VoIP to steal user information, and spam over the VoIP network," said Chris Rouland, chief technology officer of Internet Security Systems.
Denial of Service, Eavesdropping, Microsoft OCS Vulnerabilities, Spoofing IDs, and Vishing Exploits Will Affect Enterprises and Service Providers