The “double call” scam, the new technique to support data and money to users

With the advancement of technology, the scams they become more and more complex. In recent weeks, concern has grown over the “double call”a new social engineering technique to extract data and money from users.

This scam is related to the smishing and vishing. The first consists of the sending an SMS message posing as a legitimate entity such as an institution, a bank or a social network. The purpose is to obtain confidential information or make a financial charge. Normally, these SMS contain a link that redirects to a fake website or a premium rate phone number.

Alert for the new “missed call scam”: what it is and what to do to avoid it

On the other hand, there is vishing, which is a scam method that is characterized by make a call impersonating the entity of a company, organization or trusted person. During the phone conversation, scammers try to obtain sensitive information from the victim.

What is the double call scam?

As its name indicates, it requires two phone calls. It is common for the victim to receive a message supposedly sent by their bank or a courier company. In the SMS they inform you of alleged changes in the delivery of the package or abnormal movements in your account, asking you to access a link in order to modify the access codes for security reasons.

Vishing and smishing scams are on the rise

Minutes later, the user receives a phone call in which they impersonate the entity and they ask for your access codes to online banking to cancel the cards.

Black Friday: tips to avoid falling into cybercrime

Immediately afterwards, the victim accesses the bank’s website from his browser and there he finds a pop-up box in which he is once again asked for the access codes. At that moment, the possible scammed receives a SMS with the keyswhich in truth are the confirmation passwords for the fraudulent operation.

The user should be alert to the links that scammers send, since accessing them downloads applications that appear to be from the entities they are impersonating, but in truth they hide remote access software that will request to receive, read, and modify SMS messages.

The messages that are usually a scam

One of the most common messages is usually a scam that reads: “As of (date) you will not be able to use your account. It has to be verified in the system from the following link…”. As well as: “An unauthorized computer is connected to your online account. If you don’t recognize it, please check the link below.”

You should also be alert to someone who says: “Your account or bank card was temporarily blocked.”


You may also like