The tactics employed by internet scammers continue to become more sophisticated. Recently, KrebsOnSecurity reported a new phone-based scam that “spoofs” Apple Inc. and its customer service phone number for iPhone users.
Spoofing disguises the caller’s identity by using fake caller ID information. This particular vishing scam starts with an automated phone call that displays Apple’s logo, correct address and their correct phone number. This scam warns about a data breach at the company, and requests that the caller contact a toll-free number prior to doing anything else with their phone.
If an iPhone user requests a call back from Apple’s legitimate Customer Support line, the fake call gets indexed in the iPhone’s “recent calls” list and looks like the legitimate Apple Support line call.
A call to the fake toll-free number by KrebsOnSecurity was answered by an automated message indicating that Apple Support had been reached along with an expected wait time. Though the call was disconnected prior to a conversation, the call was eventually answered by an individual who did not work at Apple but at a call center. This scenario is indicative of a call center scam.
Security best practices suggest the following:
- Do not answer calls from telephone numbers you do not recognize.
- If you answer, do not respond to any questions and immediately hang up the phone.
- Beware that fake telephone numbers linked to scammers are becoming more prevalent in search engine results.
- Obtain a telephone number directly from a company’s website (not just a Google search).
For the complete article and other security insights, visit KrebsOnSecurity.com.