Caller ID Spoofing – What It Is and What to Do About It
What is Caller ID?
Caller identification (Caller ID) is a service that allows the receiver of a phone call to determine the identity of the caller. Caller ID is initially sent over at the start of the phone call and identifies the incoming caller before the receiver answers the phone.
Caller ID is not associated with the actual phone number but is part of the initial call setup, which allows the caller to manipulate the Caller ID to display a different number from the number that is calling.
What is Caller ID Spoofing?
If you have ever received a call where the caller said that you called them when you have not, then your number was most likely spoofed by another person. There are many phone scams that use Caller ID spoofing to hide their identity because Caller ID spoofing makes it impossible to block the number.
Anyone can spoof their outbound Caller ID by using an online service like Spooftel and SpoofCard, which allow anyone willing to pay to spoof numbers. These services are meant to protect the caller’s number from being displayed and claim they aren’t intended for malicious purposes, but they have limited control over who uses the service.
Companies can also control their Caller ID if they have their PRI or SIP connection, the technical names for multi-line enterprise telephony setups.
For more information Caller ID spoofing, you can refer to my previous blog post.
Are there multiple victims with Caller ID Spoofing?
There are always multiple victims when a scammer uses Caller ID spoofing. The main victim is the receiver that answers the telephone call with a number being spoofed, aka the target of the scam.
The secondary victim is the owner of the number; their number is being used without permission. The secondary victim (Read more...)
*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Andrew Swoboda. Read the original post at: https://www.tripwire.com/state-of-security/featured/caller-id-spoofing/