You might be hyper-vigilant about dodgy emails, but what about when your phone rings? Scammers aren’t just lurking in your inbox, they’re dialling straight in. Vishing, short for "voice phishing", is a sneaky scam that happens over the phone. For small business owners, who often have to juggle calls from banks, suppliers, and clients, vishing is a threat you’ll want to stay ahead of.
What is vishing?
Vishing is when scammers call you, pretending to be someone trustworthy—like your bank, a government agency, or even your tech provider. They’re after sensitive details like your account numbers, passwords, or credit card information. Using caller ID spoofing, they can even make the call appear as though it’s coming from a legitimate number.
As people have grown used to automated systems and phone-based services, scammers have upped their game. Vishing attacks play on this familiarity, creating a false sense of security. And because there’s a real voice on the line, it can feel more convincing than a dodgy email.
Take this for example:
“This is Sarah from the ATO. There’s an urgent issue with your business account. To avoid legal action, please confirm your ABN and banking details now.”
How to spot and stop vishing scams
Good news: you don’t need to hang up the phone forever to stay safe.
Here’s how to help protect yourself:
- Slow down: If a caller pressures you to act immediately, that’s your red flag. Legitimate organisations won’t rush you. Scammers rely on urgency and fear to get you to act fast, before you realise it’s a scam.
- Verify independently: Never give out sensitive info over the phone. Hang up, then call the organisation back using a number you’ve looked up yourself. Legitimate organisations will also never chastise you for being extra safe.
- Don’t trust caller ID alone: Scammers can spoof numbers to look official. Treat each and every unexpected call with caution.
- Educate your team: Make sure everyone in your business knows about vishing tactics. Awareness is your first line of defence.
- Report the scam: If you receive a suspicious call, report it to Scamwatch to help protect others or call the Australian Cyber Security Hotline on 1300CYBER1.
Stay safe against vishing scams
Vishing scams are getting slicker, but with a healthy dose of scepticism and some simple safety steps, you can keep your business off the hook.
Want to sharpen your scam-spotting skills even more? Enrol in the free Cyber Wardens training program today!
