« Sold to the Highest... | Main | Choosing the Right... »
 

Entry bubble I got phished!

By: Sommer | October 19, 2007 | Category: General

It finally happened to me, I got "phished" or "vished" -- whichever you prefer. I never thought it would happen to me since I've been giving the public information about protecting themselves from phishing and ID theft for years. It sure is different to be the one faced with fending off the crook, though.

So, here's my story: 

A couple weeks ago I was driving home from our office picnic when my personal cell phone rang. I usually don't answer if it's an unknown number, but for some reason I fishing polepicked up anyway. A woman with a syrupy southern accent started the conversation by saying she was from the State Department, she then told me I was using a cell phone number the government was paying for and nicely asked me to provide all the information about myself I possibly could that might help her "resolve this issue."

My first instinct was to help the woman out.  My heart had started beating like crazy as I wondered what I had fouled up this time.  I just wanted this situation resolved ASAP.  I mean, who wants the State Department on their case?  Then, my red flags started going up.  Why would the State Department call me directly instead of calling the cell phone company to ask about the bill? And, if  the State Department really wanted information about me, couldn't they get it another way, like send me a certified letter on government stationary? Besides, I pay the bill for that phone number every month, how could they be paying it, too? Whew, I finally had my wits about me and I hadn't given up any of my personally identifiable information (she already had my name and cell number).

With that brief moment of panic behind me, I kindly and firmly replied that unless she could prove what she was saying I had every reason to believe she was just trying to steal my identity, and, NO, I would not be sharing any personal information to help her out.  Then the threats started -- "I'm going to have the State Department's head of security call you" "and my director, too."  My favorites were "you're stealing from the government and committing a crime" and "we're going to have your cell phone turned off." I told her to feel free to have them contact me since I wouldn't be sharing any information with the head of security or her director either unless they could prove what was going on.  Exasperated, I excused myself from the conversation and hung up.

What did I learn from all this?

  1. It's harder to resist the phisher than I thought, and it's also scary to consider "what if they're telling the truth"?  I still wonder about this one, but, I haven't gotten a call from the State Department's head of security and no one has shown up at my door yet.  I'm comfortable this one was a hoax.
  2. Phishers don't just email, they can also call.  It's harder to fend off a caller than just deleting an email.  When in doubt just hang up.
  3. Be tough and if what the caller says sounds fishy or just doesn't make sense, it probably isn't legitimate. DO NOT answer any questions -- even if the caller threatens you!!
  4. Don't be afraid to ask for proof of the caller's identity.  If the caller's claim is legitimate they won't hesitate to prove themselves to you.
  5. Report email phishing to the US-CERTReport phone phishing to the National Fraud Information Center.
Thank goodness I didn't fall for it! 

| Comments [3] | envelope Email This Entry | Tags: email   fraud   idtheft   phishing   phone   sommer   telemarketing   vishing  

Comments:

We welcome your comments and expect that our conversation will follow the general rules of respectful civil discourse. This is a moderated blog, and we will only post comments from bloggers over 13 years of age that relate to topics on Gov Gab: Your U.S. Government Blog. We will review comments for posting within one business day. You are fully responsible for everything that you submit in your comments, and all posted comments are in the public domain. We do not discriminate against any views, but we reserve the right not to post comments.


It took you this long to be phished. Wow. I get about 1 email a week from Benin or the Congo telling me how someone's father died wealthy and this young person (usually a woman) just needs some help getting that $21 million dollars into the US. Automate delete.

Posted by JR on October 19, 2007 at 11:20 AM EDT #

It takes Diplomatic Security a long time to follow up (witness the guys who've been hanging around sans clearance in Washington for three or more years). All the same, this sounds like a phish.

Posted by Betsy Ross on October 19, 2007 at 09:40 PM EDT #

Internet Crime is a growing concern for all of us. Phishing, just like spamming, needs to be addressed.

Thanks,
Anonymous
http://sixhrs.com

Posted by Anonymous on October 23, 2007 at 09:54 PM EDT #

Post a Comment:
Comments are closed for this entry.