What is “Spoofing”, the new fashionable banking scam?

What is “Spoofing”, the new fashionable banking scam?

Share it

The Toulonnais received a phone call from “La Poste vol”, he explains that it is a number he had registered in his directory in case he would one day need to oppose. On the other end of the line, someone tells him that fraudulent transactions are taking place on his account. So convinced that he is dealing with the opposition center, he follows the instructions given to him.

Spoofed bank number

He is asked to respond to an SMS with a confirmation code, then he is called back to ask him for information and in particular the “confidential code” of his bank card, relates the sexagenarian. The same number, stamped “La Poste vol” recontacts him for a change of card. “He told me that someone was going to send me and he gave me a file number. “The Varois then receives a visit from a man, with the famous file number, and the sexagenarian gives him his bank card. Very quickly, his account was debited with more than 5,000 euros via withdrawals from the distributor and dematerialized services.

The victim then calls “La Poste vol”, recorded in his directory and it is explained to him that this number “is never used to call customers. The Toulonnais was the victim of a scam, based on the usurpation of an existing number in this case, that of the opposition center of his bank. This technique is called “spoofing”.

What is Spoofing?

Spoofing involves disguising a communication or identity in such a way that it is believed to be associated with a trusted source, such as the opposition center of the bank for example. Cybercriminals use three kinds of spoofing: email spoofing, aliasing and IP address spoofing. The goal is to rob the victims and damage their reputation. A spoofing attack can lead to a costly and harmful data breach for both individuals and businesses. This attack turns out to be dangerous and more and more frequent on social networks.

How to detect it?

A spoofing attack can be avoided. The site lebigdata.fr, gives us advice. This includes watching for signs that someone is impersonating them. E-mail spoofing, for example for having unusual grammar, bad spelling or awkward language. The message sent can also be of an urgent nature, which causes one to act immediately without paying attention. On closer inspection, we can see that the sender’s email address is totally different from the organization he claims to work for, or that letters are missing. Avast (antivirus software) alerts on typosquat or URL and brand hijacking but also on strange attachments or requests for personal information.

How to Prevent and Avoid Spoofing Attacks?

There are several security tools to help prevent spoofing attacks. For example, a spam filter prevents phishing emails from reaching the inbox. Some network operators also use similar software to block unwanted calls on users’ phones. A few best practices can also help reduce the risk of falling prey to a spoofing attack, such as avoiding clicking directly on a link. Better to enter it manually in the browser. Never open unexpected attachments especially if they have an unusual file extension. And then, the first tip, changing passwords regularly and finding strong ones that are hard to guess can improve cybersecurity.

Likewise, care should always be taken to ensure that the IP address is masked while browsing. Finally, reporting spoofing attempts, especially after receiving a spoofed email or other communication, can help prevent future attacks. If in doubt about bank identity theft, it is best to consult your advisor.

#Spoofing #fashionable #banking #scam

Share it