Spoofing.
In plain English
Spoofing is disguising the source of a communication so it appears to come from someone you trust. Caller-ID spoofing makes a call show your bank's real name or number; email and text spoofing fake the sender so a message looks like it is from a company or even a person you know. It is the technical trick that makes many scams convincing, because the identifying details we instinctively rely on can be forged. The practical defense is to treat the contents, not the displayed sender, as unverified, and to reach out through a channel you independently trust.
01Why it matters
Spoofing defeats the quick check most people make, glancing at who a message is from, so understanding it shifts the habit to verifying through a separate, trusted channel rather than trusting the display.
02The math, step by step
Your phone shows an incoming call from your bank's real name and number, but the number was spoofed and the caller is a scammer. Because the display looks right, the request feels legitimate. Independently calling the bank back is what cuts through the forged identity.
03What this is NOT
It is not the same as breaking into a system. Spoofing only fakes the sender's displayed identity on a message or call; it does not require access to the real company's accounts. That is why the message can look authentic while being entirely fraudulent.
04Receipts
Every figure on this page is sourced to a primary document. Tap to open the original.