Staff Security Awareness Tips

Improving Employee Security Awareness

Contact Sales
PhishingBox Security Awareness Training Provider and Phishing Simulation End-PointPhishingBox Security Awareness Training Provider and Phishing Simulation End-Point

Do Not Trust Caller ID

This is the Security Tip: Do Not Trust Caller ID email that is used within the PhishingBox security awareness training. These security tips can be used to provide ongoing security reminders to employees.

PhishingBox Logo
What You'll Learn Today: Do Not Always Trust the Caller ID

Phone numbers can be easily masked, do not trust caller ID on your phone.

How Caller ID is exploited

The underlying infrastructure for telecommunication allows the Caller ID number to be any phone number. For most consumer-grade phones, the provider does give the user the ability to change this number. However, for commercial grade phone system, this feature is used to display a common phone number on all outgoing calls, such as in a call center.

Attackers use this ability to modify the caller ID to trick the end user to either taking a call or attempting to add validity to the call.

If the caller is requesting non-public information or for you to perform a high-risk transaction, do not provide information or perform the action until the request is verified as authentic and authorized.

If you believe that you have received a suspicious phone call, notify your security personnel and initiate incident reporting procedures as appropriate.

Copyright © 2021 PhishingBox, LLC