The Federal Office for Information Security (BSI) receives reports that an increasing number of calls are being made using the BSI's phone number (spoofing) and a two-digit extension number. For example, the numbers +49 228 9582 44 or 0228 9582 44 are used. This is not a call from the BSI.
The callers pretend to be employees of the BSI. The BSI urgently warns against giving the caller personal data or complying with requests! It is of course to be assumed that the calls have a legal abusive background! Consumers who receive such calls should end them immediately. The BSI contacted the Federal Network Agency and filed a criminal complaint. If someone has answered such a call and has followed instructions, they should contact the BSI service center on 0800 274 1000.
Spoofing - via email or call (Call ID)
With spoofing, criminals pretend to be reputable authorities, companies, institutions (e.g. banks or associations) or individuals on the phone or by e-mail. They do this in order to either access sensitive and personal data directly or to prepare for another attack, for example by linking to fake websites. Victims are usually contacted by supposedly known telephone or e-mail senders. The actual identity of the criminals remains veiled.
With spoofing via telephone (call ID spoofing), the displayed telephone number is either known or slightly lengthened or changed, so that fraud (especially under possible time pressure) is hardly noticeable at first. For example, if you try to call back such a changed phone number, the correct number is dialed instead of the fake number and you end up with the phone number you actually know – but without the person called knowing about the fraud.
Spoofing is part of what is known as social engineering and plays on people's trust or fear. Criminals use this to achieve their goals, usually under time pressure, such as stealing account and access data or handing over large amounts of cash. In the emotional state, the victims often give in and reveal sensitive data or hand over cash. The reasons for this are diverse. Victims often believe in the seriousness of the authority or institution or are surprised by an emergency or dangerous situation that has been described.
More at BSI.bund.de
About the Federal Office for Information Security (BSI) The Federal Office for Information Security (BSI) is the federal cyber security authority and the creator of secure digitization in Germany. The guiding principle: As the federal cyber security authority, the BSI designs information security in digitization through prevention, detection and reaction for the state, economy and society.