We suggest you read the full article about Vishing from the FBI, but here is the Executive Summary version:
“Vishing starts with an e-mail, like phishing, but requests that end-users contact a particular institution by phone in order to resolve an issue or re-secure personal data. . . . Ironically, vishing e-mails may even attempt to reassure recipients of their legitimacy by stating that the institution in question would never request customer financial data via e-mail or IM.
“Vishing attacks are rising as voice-over-IP services become more popular. VoIP users (both commercial and residential) aren’t required to provide valid Caller ID information, which makes it an ideal platform from which to launch vishing attacks.”
Always use your common sense concerning e-mail. Visit a website from your own bookmark, not links provided in the e-mail. Same with phone numbers, call your institution using a phone number provided on a statement or other verified source, not from a number provided in an e-mail. Always be cautious and never provide any personal information over the phone if you did not originate the phone call.