Body
We are seeing more voice impersonation (vishing) scams targeting Post‑Secondary schools in BC. Attackers now use AI‑made voice recordings to sound like real employees.
How the Scam Works
- The attacker gets a short recording of someone’s voice (from voicemail, public videos, or social media).
- They fake their caller ID, so the number looks real.
- They play the AI‑made voice clip to pretend to be that person. Then they switch to a script and try to make you do something urgent, like:
- Approving 2SV codes
- Resetting passwords
- Approving payments
- Sharing private information (like SINs, credit cards, or banking info)
Why It Works
- The call sounds like it’s from someone you know.
- Because the scam happens over Teams Calling or your cell phone, normal email security tools can’t detect it.
- There are no strange links, emails, or attachments to warn you.
- The scam uses trust and pressure to make you act fast.
How to Protect Yourself
- Don’t trust a caller just because the voice or caller ID looks real, both can be faked.
- Always verify using another method: Teams chat, a known‑good phone number, or email.
- Never approve 2SV/MFA codes, password resets, or changes to sensitive info based only on a phone call.
- Watch for red flags: urgency, authority, or pressure to act quickly.
- Treat suspicious calls the same way you treat a phishing email.
Additional Information
The Government of Canada and UBC have also published guidance on how these scams work if you would like to know more: