Do you know your phishing from your smishing?
The various types of online and offline fraud have some strange names. Learning these names is one thing, but understanding when you’re being targeted – and how to avoid being duped – is another.
Taking time to learn about how fraudsters work can help you to keep your information and money safe.
Let’s explore some of the types of fraud out there.
This term comes from combining the words ‘voice’ and ‘phishing’ – and as you may have guessed, it’s to do with phone calls.
How it can happen
A person will receive a phone call from a fraudster who’s posing as an employee of a reputable company or organisation. The fraudster will come up with a plausible story to get the person to share their financial and personal information. Fraudsters can manipulate telephone numbers, so it looks like they’re calling from a genuine number. They may also do some basic research online i.e social media to get details about the person, making the fraudster’s story sound more convincing.
Here’s an example of vishing
Mohammed was using his laptop when his phone rang. The caller was an ‘IT specialist’ from his home internet provider, and they explained that there was a virus on Mohammed’s laptop, and that he would need to restore the settings with their help. They asked Mohammed to re-open his recently visited internet sites, which included his online banking. Mohammed provided some technical details, which allowed them to gain remote access to his laptop. Mohammed was advised not to use the laptop for 24 hours following the software and protection update. The next day, Mohammed went to take money out of his bank account, but his balance was zero. Mohammed contacted his bank, who confirmed that he had been a victim of fraud.
Phishing and smishing
Email fraud is called ‘phishing’ – whereas ‘smishing’ comes from combining ‘SMS’ (Short Message Service) and ‘phishing’ and is fraud by text message.
How it can happen
These types of frauds allow criminals to access valuable personal and account details, by sending emails or texts. They ask the receiver to download an attachment or follow a link to a website containing malware, which can collect secure and personal information.
The emails or texts could seem as if they are being sent from your bank, mobile phone company, a business you shop with, or an organisation you’re registered with.
Here’s an example
Sophia received a text message from her mobile phone provider to say that her account had been used by someone else to download lots of apps. In order to get a refund, Sophia was told that she needed to click on a link contained in the message. She was then asked to enter her bank details, and the three-digit security code from the back of her debit card into a form online. She was then told that her refund would appear in her account within the next few days.
The following day, when Sophia checked her bank account balance using her mobile banking app, she saw that a large sum of money had been withdrawn from her account. She phoned her bank, who advised that she had been a victim of social engineering.
‘Money mules’ or ‘money transfer agents’ are coerced into having stolen money transferred into their accounts, and are then directed to move the money on, typically sending it overseas.
Fraudsters can open an account themselves using fraudulent ID, or may convince someone who already has a bank account to receive money on their behalf.
How it can happen
Money mule fraudsters could try to recruit someone via email, job-search websites or adverts, they've also been known to approach young people directly, outside of schools. They’ll offer someone a payment for receiving money into their account, and will then direct that person to either transfer it elsewhere or withdraw it and hand it over to a stranger.
Here’s an example of money mule fraud
Chris received a direct message (DM) from someone he didn’t know on social media. The fraudster promised Chris a large amount of money if they could use his bank account to move money. Chris was suspicious, but the fraudster said it happens all the time. Chris eventually gave over his bank account details. The next day, a large sum of money was deposited into his account.
Chris was then instructed to go to his bank and withdraw all of the deposited cash – and was told how much he’d get to keep.
What Chris was actually doing is laundering money that came from a criminal act. The bank asked lots of questions, which exposed Chris as a money mule and also highlighted that he had acted illegally, even though he was unaware he was breaking the law.
Shopping or holiday fraud
Fraudsters use fake online adverts to advertise products, holidays or services that don’t exist or aren’t theirs to sell. To pay for the goods, they convince you to send a transfer directly to their bank account but the goods never arrive, or are not as advertised.
If a deal looks too good to be true, it probably is
Be cautious of anything offered in an unsolicited email or a strange ad. If you’re unfamiliar with the organisation, do research online to make sure they’re reputable. If it’s a holiday company for example, check that they’re a member of a recognised trade body, such as ABTA.
Here’s an example of shopping fraud
Lauren was looking to upgrade her mobile phone, and found someone online selling a top-of-the-range model she liked for half the store price. When she contacted the individual, they asked Lauren to make an online transfer directly to their bank account before they sent her the phone in the post. When she received the phone, it was a much older and more basic model than advertised. When she tried to get in touch with the seller for a refund, her phone calls and emails were rejected. Lauren then realised that it was too late, and she had been duped.
Fraudsters manipulate or trick people into exposing their personal or financial information through fake emails, phone calls, texts and posts on social media. These can be very complex attacks, some combining various sources of information about you to appear more convincing.
Want to know more about fraud?
- Visit http://www.takefive-stopfraud.org.uk/ for straightforward and impartial advice to help protect yourself from preventable financial fraud
- Follow Action Fraud online and on social media for updates on the latest frauds and scams. Visit actionfraud.police.uk
More from us
- Have a look at our 8 tips for staying safe online
8 ways to stay safe online
We spend a lot of our time online, from shopping, paying bills to chatting, but it’s important to make sure you keep your information and money safe
34 Ways to save
34 ways to save money and improve your spending habits throughout all areas of your life, including technology, food, shopping, travel and socialising.