What is Smishing and Vishing?
Smishing and Vishing are both forms of Phishing. They utilize different methods of communication to extract information from a victim.
Smishing (SMS/Text Phishing)
Smishing is phishing that is done through text messages. Often smishing messages are sent disguised as someone's bank, boss, or some trusted organization. The messages usually contain a link to a form for the user to fill out or a download for malware.
Like most forms of phishing, smishing messages will often appear to be urgent, giving a small time window to respond and forcing you to rush through your decisions.
If you ever receive a message from someone you don't know claiming to be from an organization you belong to:
Do not click any links within the message
Visit the organization’s website to find accurate contact information and contact a representative regarding the message
Vishing (Phone/Voice Phishing)
Vishing is phishing that utilizes phone calls, voicemails, or robocalls to extract information from its victims. A classic example of a vishing attempt is a car extended warranty call.
The scammer will attempt to extract sensitive information like your credit card information, social security number, or home address all while pretending to be from a legitimate organization.
If you receive a call from an unknown number claiming to be a trusted organization:
Don't answer the call. This is likely to increase the amount of vishing attempts you get.
Hang up and tell the individual you will call them back. Find the real organizations contact information on their website and call back to see if the call is legitimate.
NOTE: Vishing scammers have been known to record victim’s voices during calls in order to impersonate them and authorize monetary transactions in the victim’s name. It's important to hang up as soon as you notice something suspicious about the call.