The US-based company Pindrop Security, who provide anti-telephone fraud solutions, have announced their findings of a 30% rise in enterprise telephone based attacks. The 2014 findings are based on 86 million scam calls a month from which attackers aimed to obtain personal information from potential victims. The full Phone Fraud Report can be downloaded from here.
Matt Garland, vice president of research and head of the newly formed Pindrop Labs team, which analyzed the data, said: "As major data breaches such as Anthem and Target have occurred, attackers have found the phone channel to be the vulnerable underbelly for corporations and consumers, allowing them to monetize the breaches through social engineering and account takeovers."
Some of the highlights within the report include:
- Rates of phone fraud are similar across economically developed countries
- Attackers use multi-pronged attacks, targeting consumers, retailers, and financial institutions simultaneously
- Credit card issuers face the highest rate of fraud calls, with one fraud call in every 900 calls
- Scammers are increasingly using VoIP and robo-dialers to mask incoming phone numbers and increase target accuracy on consumers
The US authorities have been warning individuals about scammers who will do just about anything to obtain personal financial information, including pretending to be law enforcement.
One example includes an old scam which is re-emerging in which the caller claims the targeted victim failed to report for jury duty. The caller claims there is now an arrest warrant out for them, but informs the individual they can get avoid arrest by verifying personal information. The scammer might go even further and demand that the person pay up by providing a credit card number to the scammer.
Dionach provide telephone social engineering based penetration testing as well as staff training services to help avoid such scams. See the following link for more details: