Vishing scams on the rise: Cybercriminals targeting victims via phone calls

Cybercriminals are increasingly resorting to voice phishing, commonly known as "vishing", to trick individuals and organisations into sharing sensitive information over phone calls.This method, which bypasses traditional email-based tactics, is gaining traction due to its ability to exploit trust and urgency in real time.What is vishing and how does it work?Vishing involves fraudulent callers impersonating representatives from legitimate entities such as banks, government agencies, or tech support firms. These scammers rely heavily on social engineering, using emotional triggers like fear, urgency, or curiosity to pressure victims into revealing personal information such as account credentials, passwords, or PINs.Tools of deception: Spoofing and voice manipulationTo make their calls appear credible, fraudsters often use caller ID spoofing, displaying trusted numbers to fool targets. In more advanced cases, pre-recorded messages or voice modulation software are used to mimic official communication, increasing the perceived legitimacy of the call.Not just individuals- organisations are also targetedVishing attacks are not limited to private citizens. Criminals also target companies by impersonating internal personnel, such as IT staff or executives, in an attempt to access corporate systems or authorise fraudulent financial transactions. These tactics can result in significant data breaches or monetary losses.How to protect against vishing?Experts urge the public to be cautious of unsolicited calls that request sensitive data or demand immediate action. Verification is critical: recipients should hang up and independently contact the organisation using trusted channels before taking any steps.For businesses, cybersecurity training remains vital. Organisations should conduct regular awareness programmes, enforce strict telephone verification procedures, and educate employees on how to identify and report suspicious activity.As vishing schemes become more sophisticated alongside technological advancements, both individuals and businesses must stay alert. Maintaining scepticism and practicing sound verification habits are key to staying protected from these deceptive voice-based attacks.