By Ellen Phillips, Commentary
Q: A couple of weeks ago, I received a text message from what I thought was my credit card company’s issuing bank. It instructed me to re-activate my card because of a security concern, and I stupidly called the number given to my “bank” and verified the account number. Please advise your readers not to do as I did so they don’t have to go through the humiliation of getting a new card. — Embarrassed Elizabeth
Dear Embarrassed: Don’t be. According to the FBI, you’re only one of many victims of a “Vishing” attack. Another form of “phishing” by scammers, consumers may receive an e-mail, a phone call, or (as in your case), a text message, advising the person that a security problem has arisen (or that your account number has expired), and the only way to fix the trouble is to call that specific telephone number. SURPRISE! Obviously, the thief is on the other end of the call so don’t be fooled by the “bank’s” welcoming message.
Another way these villains (who aren’t stupid) try to reassure us is to send a text message and emphasize that never would the “bank” e-mail or call in order to obtain this personal information. They mean to reassure the consumer and sadly, all too often, this does the trick.
While I hate to sound so cynical, we always should be suspicious of and alert to any individuals or so-called organizations that try to extract personal information of any kind. The only time you should open your mouth about any PII (Personally Identifiable Information) is if you make the initial contact and are certain that the person to whom you’re speaking is the one you’re sure you want! For more information on Vishing, check out www.ic3.gov/media/2008/080117.htm.
As a postscript and to re-emphasize my column regarding the use of one’s Social Security information: afterwards, I received several e-mails claiming that medical practitioners must obtain their patients’ Social Security numbers, even though the Social Security Administration (www.ssa.gov) states otherwise. The Privacy Rights Clearinghouse, a nonprofit consumer education and advocacy project whose purpose is to advocate for consumers’ privacy rights in public policy proceedings, further explains that Medicare is the ONLY exception to the above rule.
2008 IRS Tip: The IRS cautions taxpayers to be on the lookout for scams involving proposed advance payment checks. If the government’s economic stimulus package goes forth, the IRS probably would provide advance payments, informally titled “rebates.” Unfortunately, a scam that uses these proposed rebates as traps (or maybe notifying you of an impending audit) has already cropped up so don’t reply to a single so-called IRS e-mail, text message or telephone call. If you receive a notice using any of these methods, forward it without opening to phishing@irs.gov. The agency tells us that Uncle Sam doesn’t contact taxpayers via these methods. Beware!
Editor’s Note: Ellen Phillips is a retired English teacher who has written two consumer-oriented books. Her Consumer Watch column appears on Saturdays in the Business section of the paper. An expanded version is at www.timesfreepress.com under Local Business. E-mail her at consumerwatch@timesfreepress.com
