What Is Spoofing?

Introduction:  Lion's Share Federal Credit Union will never call, text or email Members asking for passwords, PIN Information, account and/or social security numbers.
We may contact you via phone, text or email for the following information:

  • asking you to contact us due to possible fraud on your debit or credit card.
  • asking you for an updated email address, due to the one we have on file being returned.
  • to inform you that we have returned mail & need your new mailing address.
  • to inform you when a request from you has been completed.
  • asking you to contact us regarding a transaction trying to post to your account.
  • to inquire about re-ordering a debit/credit card blocked due to fraud.

All Lion's Share FCU text communication contains our company name, the full name of the person sending the text & thier direct contact number.
If you question whether the text is from Lion's Share, you can call 704-636-0643 or 800-889-2393 and ask to speak to the person who sent the text.

Spoofing Definition

Spoofing is the act of disguising a communication from an unknown source as being from a known, trusted source. Spoofing can apply to emails, phone calls, texts, and websites, or can be more technical, such as a computer spoofing an IP address, Address Resolution Protocol (ARP), or Domain Name System (DNS) server.

Spoofing can be used to gain access to a target’s personal information, spread malware through infected links or attachments, bypass network access controls, or redistribute traffic to conduct a denial-of-service attack.

Spoofing that leads to the rerouting of internet traffic can overwhelm networks or lead customers/clients to malicious sites aimed at stealing information or distributing malware.

How Spoofing Works

Spoofing can be applied to a number of communication methods and employ various levels of technical know-how. Spoofing can be used carry out phishing attacks, which are scams to gain sensitive information from individuals or organizations.

Email Spoofing

Email spoofing occurs when an attacker uses an email message to trick a recipient into thinking it came from a known and/or trusted source. These emails may include links to malicious websites or attachments infected with malware, or they may use social engineering to convince the recipient to freely disclose sensitive information.

Sender information is easy to spoof and can be done in one of two ways:

  • Mimicking a trusted email address or domain by using alternate letters or numbers to appear only slightly different than the original
  • Disguising the ‘From’ field to be the exact email address of a known and/or trusted source

Caller ID Spoofing

With caller ID spoofing, attackers can make it appear as if their phone calls are coming from a specific number—either one that is known and/or trusted to the recipient, or one that indicates a specific geographic location. Attackers can then use social engineering—often posing as someone from a bank or customer support—to convince their targets to, over the phone, provide sensitive information such as passwords, account information, social security numbers, and more.

Caller ID spoofing SMS

SMS spoofing is a technology which uses the short message service (SMS), available on most mobile phones and personal digital assistants, to set who the message appears to come from by replacing the originating mobile number (Sender ID) with alphanumeric text.

Website Spoofing

Website spoofing refers to when a website is designed to mimic an existing site known and/or trusted by the user. Attackers use these sites to gain login and other personal information from users.

IP Spoofing

Attackers may use IP (Internet Protocol) spoofing to disguise a computer IP address, thereby hiding the identity of the sender or impersonating another computer system. One purpose of IP address spoofing is to gain access to a networks that authenticate users based on IP addresses.

More often, however, attackers will spoof a target’s IP address in a denial-of-service attack to overwhelm the victim with traffic. The attacker will send packets to multiple network recipients, and when packet recipients transmit a response, they will be routed to the target’s spoofed IP address.

ARP Spoofing

Address Resolution Protocol (ARP) is a protocol that resolves IP addresses to Media Access Control (MAC) addresses for transmitting data. ARP spoofing is used to link an attacker’s MAC to a legitimate network IP address so the attacker can receive data meant for the owner associated with that IP address. ARP spoofing is commonly used to steal or modify data but can also be used in denial-of-service and man-in-the-middle attacks or in session hijacking.

DNS Server Spoofing

DNS (Domain Name System) servers resolve URLs and email addresses to corresponding IP addresses. DNS spoofing allows attackers to divert traffic to a different IP address, leading victims to sites that spread malware.

How to Protect Against Spoofing Attacks

The primary way to protect against spoofing is to be vigilant for the signs of a spoof, whether by email, web, or phone.

Do, when examining a communication to determine legitimacy, keep an eye out for:

  • Poor spelling
  • Incorrect/inconsistent grammar
  • Unusual sentence structure or turns of phrase

These errors are often indicators that the communications are not from who they claim to be.

Other things to watch out for include:

  • The email sender address: sometimes addresses will be spoofed by changing one or two letters in either the local-part (before the @ symbol) or domain name.
  • The URL of a webpage: similar to email addresses, the spelling can be slightly changed to trick a visitor not looking closely.

Don’t click on unfamiliar links or download unfamiliar/unexpected attachments. If you receive this in your email, send a reply to ask for confirmation. If an email address is spoofed exactly, the reply will go to the actual person with the email address—not the person spoofing it.

Don’t take phone calls at face value; be wary of the information the caller is requesting. Google the phone number presented on the caller ID to see if it’s associated with scams. Even if the number looks legitimate, hang up and call the number yourself, as caller ID numbers can be spoofed.

Spoofing can sometimes be easy to spot, but not always—more and more, malicious actors are carrying out sophisticated spoofing attacks that require vigilance on the part of the user. Being aware of different spoofing methods and their signs can help you avoid being a victim.

Source: https://www.forcepoint.com/cyber-edu/spoofing