September 23, 2019
Tips for managing robocalls across campus
The Office of Information Technology’s Telecommunications Department has noticed a growing number of complaints from across campus concerning telephone robocalls and malicious spoofing. Once considered a nuisance primarily related to sales, robocalls with malicious intent have now entered the realm of technology-related crime. Malicious callers are now trying to cull information or access to people for monetary or criminal gain.
Across campus, people are getting more calls made by auto dialers — which is a problem in itself. Since making robocalls is presently legal, there is no way to limit them and the Do Not Call Registry is not appropriate for a public institution. Employees can, however, shorten the time spent addressing them and prevent the inappropriate release of information when receiving.
Here are several tips for managing robocalls and spoofing to avoid becoming a victim:
- Look at caller ID and make a quick evaluation: Do you know the number and are you expecting a call? Don’t be fooled by a “local number.” Spoofers can mask calls from anywhere in the world with a local area code and prefix.
- Let unfamiliar numbers go to voicemail: If you are not required to answer the phone immediately, let calls with unknown numbers go to voicemail. Legitimate callers will leave a message. Scam callers may not, but automated calling systems often leave a recorded message. If you receive large volumes of incoming calls, you may need to check your voicemail more often to delete unwanted messages to keep your voice-mailbox from filling up.
- Learn to hang up: If the call starts with an automated voice, end the call. If you listen for a moment and are given an option to end calls from the number by pressing a button to opt out, be very suspicious. This is a vetting process used to identify responsive people who are ripe targets.
- Use caution if a caller asks for information: Your job may require that you answer questions for faculty, staff, students, other SIU affiliates, the community, and vendors. But if a caller presses you for information about staff, accounts, or procedures, think carefully: “Should you answer the question?” If in doubt, can politely ask for information and offer to return the call. If you decide to return the call, do not use the information provided — find it elsewhere, in an invoice or previous correspondence, or by looking it up yourself in a directory or online.
- Check incoming numbers on Google: Do an online search of a phone number. It’s simple — enter the number in the search bar of your computer. Many numbers associated with scams are known and identified as such online.
Above all, know when you are being plied for “sensitive information,” including names or locations of other people, Social Security numbers, employment or student information, or account numbers. Do not share this information. Again, if the call seems legitimate, take information from the caller and end the call. This gives you time to consider the caller’s request, to check its validity with others, and find alternate information to reconnect with the caller.
If you encounter a problem with suspicious callers or caller ID spoofing, contact the IT security team at security@siu.edu and/or the Department of Public Safety at 453-3771.
Additional tips for avoiding robocalls and spoofs for work and home are available from the Federal Communications Commission.