CALLER ID SPOOFING (Syllabus: GS Paper 3 – Cyber Security)

Context: Recent reports reveal scammers are using caller ID spoofing to disguise their numbers, making it appear as though the call is from a trusted organization.

Caller ID Spoofing

• About: It is a technique that allows the phone number displayed on a call recipient's device to be falsified.
• Spoofing Techniques: It have been refined by enthusiasts, telemarketers, and fraudsters over the years.
• Uses: Malicious individuals use caller ID spoofing to conceal their identity during illicit activities.
• Social Engineering Attacks: Spoofed caller IDs are used in social engineering attacks, exploiting the trust associated with familiar phone numbers.
• Call Blocking: It can bypass standard call blocking systems and exploit vulnerabilities in Interactive Voice Response (IVR) systems.
• Legal Status: Caller ID spoofing is legal in many jurisdictions, leading to the emergence of commercial spoofing services since 2004.
• Economic Impact: Caller ID spoofing incurs significant costs for telecommunication service providers, defrauded users, and law enforcement agencies.
• International Efforts: The International Telecommunications Union (ITU), a UN agency, focuses on improving and standardizing global communication technologies.
• TRAI's Recommendations: The Telecom Regulatory Authority of India (TRAI) recommended the integration of a Calling Name Presentation (CNAP) system to display caller names based on KYC documents.
• A 2022 TRAI consultation paper briefly acknowledged caller ID spoofing but lacked a detailed plan to tackle the issue.