In today's digital world, fraud comes in many forms, and many of them end in "ING." These scams are clever, fast-moving, and constantly evolving. From QR codes to fake texts, phone calls to spoofed emails, fraudsters are using increasingly creative tactics to get their hands on your personal or financial information.
At WestStar, we refer to these threats as "the INGs." Why? Because they tend to sound harmless, like common tech lingo, but each one is designed to catch you off guard, so the more you understand how they work, the better protected you will be.
Let us break them down.
Phishing
Phishing is the classic, and still the most common, type of scam. It typically comes in the form of an email that looks official but is designed to trick you into clicking a malicious link or handing over sensitive information. It might look like a bank alert, a payment notification, or even a note from a coworker.
What to look for:
- Urgent subject lines
- Misspellings or odd formatting
- Slightly off sender email addresses
- Suspicious links
Pro tip: Never click on links in emails you were not expecting. If it claims to be from a company or bank, visit the company or bank website directly.
Quishing
Quishing is a newer scam that uses QR codes to lure you into a trap. These codes may be on flyers, fake signs, emails, or even placed over real ones. When scanned, they send you to malicious websites or automatically install malware on your device.
What to look for:
- QR codes in odd places (parking meters, bathroom stalls, flyers taped to walls)
- Codes with no clear source or branding
- Email attachments with QR codes instead of links
Pro tip: Scan QR codes only from trusted sources, and if anything feels off, skip it.
Smishing
Smishing is the text message version of Phishing. Fraudsters send fake texts pretending to be from your bank, a delivery service, or a well-known company. These messages may ask you to "verify" information, click a link, or call a number.
What to look for:
- Messages claiming your account is locked
- Unexpected delivery updates
- Requests to click a short link or respond urgently
Pro tip: WestStar will never ask for personal information by text. When in doubt, do not respond; call us directly at 915.532.1000
Spoofing
Spoofing is when scammers disguise their phone number, email address, or website to look legitimate. Caller ID might show your bank's name. The email might look like it came from your HR department. But it is all fake.
What to look for:
- Minor changes in email addresses (like @weststarnbank.com)
- Caller ID displays that match real companies, but with strange messages
- Websites that look familiar but have strange URLs
Pro tip: Do not rely on caller ID. Trust your instincts. If something feels wrong, check it directly with the source.
Vishing
Vishing stands for "voice phishing." It occurs when someone calls you pretending to be from a trusted institution, such as a bank, a government agency, or tech support, and uses scare tactics to get you to reveal personal information.
What to look for:
- Calls from unfamiliar or blocked numbers
- Requests to verify account numbers or reset passwords over the phone
- Pressure to act quickly ("Your account will be frozen if you do not act now")
Pro tip: Hang up. Then call the company back using the official number listed on their website or your account materials.
Awareness Is Protection
The INGs are clever, but you are smarter. By learning what to look for, you are already one step ahead.
Stay curious. Be cautious. And when in doubt, pause, verify, and protect your information.
Help us stay on top of fraud by reporting it by visiting our Report Fraud page.
To learn more about how to stay safe, visit the WestStar Fraud Center. You will find practical tips and tools to help you protect what matters most.