8.24.22

Callback Phishing Scams

Cybercriminals are using callback numbers to trick people into granting them remote access.

Always be on the lookout for call back scams. You may get an email that is suspicious with a call back number. This is used by cybercriminals to get you to call them directly. Once you call them, cybercriminals will ask you questions and trick you into sharing sensitive information so they can get access to your device.

In the latest scam, cybercriminals are sending out emails that say you have subscribed to a service with automatic payments. This email includes a call back phone number that you can use to call them if you have any questions.The cybercriminals do this because they know that you are going to have questions about why you are subscribed to something that you didn’t authorize. When you do call them, they will ask for you to give them remote access so they can cancel your subscription.

Once you give them remote access, it is game over! Cybercriminals can change settings to ensure they can access your computer later and they can add ransomware to lock you out. They also can threaten you and say that they will share your data if you don’t pay them the ransom or do what they ask. 

Tips:

  • Never give remote desktop access to companies or people you do not know.
  • You should not need to give someone remote access to cancel a subscription.
  • Never use the phone number in an unexpected or suspicious email. Go to the company’s website to get their number off of it.
  • Always think before you take action! Cybercriminals are out there to try and trick you.

Learn more tips like this and train your employees with our Security Awareness Training Program.