News

Vishing on the rise: PLDT, Smart warn of new modus after firewall blocks SMS scams

OPPO Reno12 F 5G Coming Soon

PLDT and Smart Communications warn of a new scam targeting unsuspecting Filipinos — vishing — after a significant decline in text-based phishing attacks, or “SMShing.”

The shift in tactics comes after Smart activated a new network firewall in the first half of July. This enhanced security system successfully blocked over 30 million malicious texts in a single day, leading to a noticeable drop in SMShing incidents reported by customers.

However, cybercriminals are now turning their attention to vishing tactics. Vishing involves phone calls where fraudsters impersonate bank representatives or other trusted figures. They aim to trick victims into divulging personal information like login details, account numbers, and credit card CVV codes.

Social engineering is a key element of vishing scams. Scammers often address victims by name and create a sense of urgency by warning of account suspensions or promising free upgrades. These tactics are designed to panic victims into releasing personal data.

The sophistication of vishing attacks is also increasing. Criminals are turning to AI to generate life-like voices to deceive potential victims.

Protect yourself from vishing and other phishing attacks

Smart shares some tips on how to protect yourself from vishing and other phishing attacks with the acronym ‘SCAM’.

  • S is for ‘Suspicious’. Never answer calls or respond to messages from unverified or unknown numbers. Banks do not usually initiate calls nor send SMS asking for bank account details. Likewise, official bank and Smart representatives will never ask for OTPs.
  • C is for ‘Clickbait’. Scam texts often bait victims with too-good-to-be-true offers, urging them to click the link to avail of the limited-time offer.
  • A is for ‘Alarming’. Scammers create a sense of fear or dread to prod potential victims into sharing sensitive information.
  • M stands for ‘Malicious’. Text scams or emails are often accompanied by a link that leads to a phishing website.

If you receive a suspicious call or message, report them immediately to cybersecurityincidents@smart.com.ph and cybersecurityincidents@pldt.com.ph or through their verified social media accounts (Smart Communications on Facebook and @SmartCares on Twitter). You can also report suspicious activity by calling hotline *888.

Bubbles enjoys watching K-dramas and comedies in her spare time. She has a strong background in customer service and business operations having worked in the telecommunications and banking sectors. She has a degree in Business Management and a Master's Degree from DLSU.

Write A Comment