Telephone Scams in 2026: Why People Become Victims, Who Is at Risk, and How to Protect Yourself

Telephone fraud is one of the most persistent and effective forms of financial crime in Europe. While online scams rely on written communication that allows the victim time to reflect, telephone scams exploit the immediacy and psychological pressure of real-time voice interaction. The victim receives a call, is confronted with an alarming scenario – a compromised account, a suspicious transaction, an urgent regulatory matter – and is compelled to act within minutes, often transferring funds or disclosing sensitive information before the deception becomes apparent. The effectiveness of this channel is reflected in the sustained growth of telephone fraud reports across European jurisdictions, with losses reaching significant levels each year. In the overwhelming majority of cases, the victim authorises the transaction voluntarily – under the influence of fear, urgency, and deliberate manipulation – which distinguishes telephone fraud from unauthorised transactions and creates specific legal challenges for recovery. However, fund recovery remains achievable through the parallel application of banking procedures, civil proceedings, criminal complaints, regulatory referrals, and interim measures. The outcome depends almost entirely on the speed of the victim’s response and the correct legal strategy – a delay of even a few days can render recovery significantly more difficult as funds are moved through cross-border payment chains and withdrawn beyond reach.

Why Telephone Scams Are So Effective

Telephone scams exploit a fundamental vulnerability in human decision-making: the inability to pause and verify during a live conversation. Unlike email, a website, or a messaging platform, a phone call creates a real-time communication channel in which the victim is expected to respond immediately. There is no visual context – no URL to inspect, no sender address to check, no time to search for information about the caller. The fraudster controls the pace, tone, and direction of the interaction entirely. Voice communication carries inherent authority – the caller’s tone, confidence, use of professional terminology, and deliberate pacing create a perception of legitimacy that is substantially harder to question than a written message. The fraudster uses intonation to convey urgency, seriousness, and authority, triggering an emotional response that overrides the victim’s capacity for rational analysis. The legal consequence of this dynamic is critical: the victim makes financially significant decisions – authorising transfers, disclosing security codes, confirming transactions – voluntarily, under the belief that they are responding to a legitimate request. This voluntary authorisation complicates the recovery process compared to cases involving unauthorised access, but it does not preclude recovery – the victim’s consent was obtained through fraud, which provides the legal basis for civil claims, banking procedures, and regulatory complaints.

Urgency Effect and Suppression of Rational Thinking

The single most effective tool in the telephone fraudster’s arsenal is urgency. The call begins with an alarming statement designed to trigger an immediate emotional response: “Your account is being accessed right now,” “A suspicious transaction of €5,000 has been detected on your account,” “This is an emergency – we need your immediate confirmation to block an unauthorised transfer,” “You are under investigation – failure to cooperate will result in legal consequences.” These statements activate the fight-or-flight response – a neurological reaction that prioritises immediate action over deliberate analysis. Under this response, the victim’s capacity for logical reasoning, critical evaluation, and independent verification is substantially diminished. The victim enters a state of heightened emotional reactivity in which the only perceived option is to follow the caller’s instructions. The fraudster reinforces this state by maintaining constant pressure – speaking quickly, not allowing pauses, escalating the severity of the scenario, and emphasising the time-critical nature of the situation. The practical conclusion is unambiguous: urgency is the single most reliable indicator of telephone fraud. No legitimate institution – no bank, no regulator, no law enforcement agency – will ever demand that a client make an immediate financial decision during a phone call without the opportunity to verify, consult, or call back through an official number. Any call that demands immediate action is, with near certainty, fraudulent.

Identity Spoofing as a Core Fraud Mechanism

Identity spoofing – the impersonation of a trusted entity – is the foundational mechanism of modern telephone fraud. Fraudsters present themselves as representatives of the victim’s bank, police officers, employees of financial regulators (the FCA, BaFin, AMF, CNMV, CONSOB), tax authorities, or internal security departments. The impersonation is supported by technical and behavioural tools. Caller ID spoofing technology allows the fraudster to display the official phone number of the impersonated institution on the victim’s screen – the victim sees the bank’s actual number and has no technical means of determining that the call originates elsewhere. The fraudster uses professional terminology, references internal procedures, and follows scripted communication patterns that mirror the language and tone of the impersonated institution. In advanced schemes, the fraudster provides a “reference number” and instructs the victim to call back through the institution’s official number “to verify” – but remains on the line or uses call forwarding to intercept the return call, maintaining the illusion of legitimacy. The result is that the victim perceives the call not as an external contact but as a legitimate institutional communication – and responds accordingly, following instructions, disclosing information, and authorising transactions. Recognising identity spoofing requires a single principle: never act on the basis of an inbound call. Any call purporting to be from a bank, regulator, or law enforcement agency must be verified by terminating the call and contacting the institution directly through its officially published number.

Data-Driven Fraud: Use of Personal Information

Modern telephone fraud is increasingly data-driven. Fraudsters obtain detailed personal information about their targets from multiple sources: large-scale data breaches that expose names, addresses, phone numbers, bank details, and transaction histories; social media profiles that reveal employment, family status, interests, and recent activities; previous interactions with fraudulent or compromised platforms; and commercially available data from data brokers. This information is used to construct personalised scenarios that dramatically increase the credibility of the call. When the fraudster opens the conversation with “We can see that you recently made a transfer of €3,200 from your account at [actual bank name]” or “We are calling regarding your account ending in [actual last four digits],” the victim’s perception shifts from suspicion to trust. The presence of accurate personal details is interpreted as proof that the caller is who they claim to be – a bank employee, a regulator, a security officer – because the victim assumes that only the legitimate institution would have access to this information. This assumption is incorrect. Personal data circulates widely through breaches, dark web marketplaces, and aggregated databases. Possession of personal data is not evidence of identity or legitimacy. The legal complexity introduced by data-driven fraud is significant: the victim’s decision to act was based on information that appeared to confirm the caller’s identity, making it more difficult to establish that the victim failed to exercise reasonable care – which strengthens the victim’s position in subsequent civil claims and banking disputes.

Social Engineering and Psychological Manipulation

Telephone fraud is, at its core, a social engineering attack – an attack directed not at a technical system but at human behaviour. The fraudster’s objective is to manipulate the victim’s psychological state to a point where the victim voluntarily performs the desired action: transferring funds, disclosing security codes, granting remote access, or confirming transactions. The key psychological instruments are fear – the threat of financial loss, criminal investigation, account closure, or legal consequences; urgency – the demand for immediate action with no time for verification; isolation – the instruction to keep the matter confidential, not to discuss it with family, friends, or other bank employees (“this is an internal security matter,” “disclosing this information could compromise the investigation”); and pseudo-assistance – the framing of the fraudster’s instructions as protective measures (“we need to move your funds to a secure account,” “we are helping you prevent an unauthorised transaction”). The central principle is that the attack targets the victim’s decision-making process, not any technological vulnerability. This is why telephone scams affect people across all demographics, education levels, and professional backgrounds – the manipulation is designed to bypass rational analysis regardless of the victim’s sophistication. Understanding that the attack is behavioural, not technical, is the first step toward effective protection.

High-Risk Groups: Who Is Most Vulnerable

Digitally Active Users

Individuals with extensive social media presence, multiple online accounts, and frequent digital transactions are disproportionately exposed to telephone fraud. Their digital footprint provides fraudsters with a wealth of personal data – employment details, location, travel history, financial interests, family connections – that can be used to construct personalised and credible deception scenarios. Active participation in online communities, investment forums, or financial platforms further increases exposure, as these environments are systematically monitored by fraud operators for target identification. The paradox is that digital literacy does not necessarily provide protection – digitally active users are often confident in their ability to recognise fraud, which can reduce their vigilance when confronted with a well-constructed, data-enriched telephone scenario.

Individuals Under Financial or Emotional Stress

People experiencing financial difficulties, debt, employment uncertainty, or significant emotional stress are substantially more vulnerable to telephone fraud. Financial stress amplifies fear-based manipulation – the threat of account closure, frozen funds, or legal consequences triggers a more intense emotional response in someone already anxious about their financial situation. Emotional stress reduces the capacity for deliberate decision-making and increases impulsive reactions. Fraudsters who have access to data indicating financial vulnerability – overdue payments, recent loan applications, credit inquiries – can tailor their scenarios to exploit precisely these pressure points.

Elderly Individuals

Elderly individuals remain one of the most targeted demographics for telephone fraud. Contributing factors include a higher level of trust in official communications – particularly phone calls from institutions – a lower tendency to verify information through digital channels, potential isolation from family members who might recognise the fraud, and unfamiliarity with modern spoofing technologies that make fraudulent calls appear legitimate. Elderly victims are disproportionately affected by impersonation scams involving banks, police, and government agencies, and frequently suffer significant financial losses before the fraud is identified.

Young Users (Gen Z and Millennials)

Contrary to the assumption that younger generations are protected by digital literacy, Gen Z and Millennials demonstrate significant vulnerability to telephone fraud – particularly schemes involving investment opportunities, account security, and identity verification. High digital activity generates extensive personal data that is available for exploitation. Low financial verification habits – a tendency to act quickly based on digital communications without independent verification – create opportunities for fraudsters. The combination of confidence in their digital competence and limited experience with institutional procedures makes younger users susceptible to well-constructed scenarios that mimic the communication style of platforms and services they use daily.

Advanced Techniques Used by Modern Phone Scammers

Telephone fraud in 2026 has evolved well beyond the single-call model. Modern phone scammers deploy sophisticated multi-stage techniques designed to maintain the illusion of legitimacy across multiple interactions. Multi-call fraud involves a sequence of calls from different “departments” – the victim first receives a call from “the bank’s fraud detection team,” followed by a transfer to “the security department,” and then to “a senior manager” or “the compliance officer.” Each stage reinforces the perceived legitimacy of the process. The victim is passed between “specialists,” each of whom references the previous conversation, creating the experience of navigating a real institutional procedure. Advanced schemes incorporate pre-prepared “evidence” – the victim is sent documents, emails, or SMS messages during the call that appear to confirm the scenario described by the caller: fake transaction alerts, fabricated case reference numbers, spoofed security notifications. In some cases, the fraudster instructs the victim to install remote access software (“for security verification”), gaining direct control of the victim’s device and access to banking applications. These techniques are deliberately designed to mirror the internal processes of banks and regulators, making it exceptionally difficult for the victim to distinguish the fraudulent interaction from a genuine institutional communication.

Red Flags: How to Identify a Telephone Scam

Recognising the fraud during the call – before any action is taken – is the most effective form of protection. The most reliable indicators are: urgency and pressure – any call that demands immediate action without allowing time for verification is almost certainly fraudulent; request for confidential information – no legitimate institution will ever ask for full security codes, PINs, passwords, or one-time verification codes over the phone; instruction to make a transfer – no bank, regulator, or law enforcement agency will ever instruct a client to transfer funds to a “safe account” or to make a payment during a phone call; prohibition on discussing the situation with third parties – any instruction to keep the matter secret from family, friends, or other bank employees is a definitive indicator of fraud; and procedural inconsistency – if the process described by the caller does not match the known procedures of the institution they claim to represent, the call is fraudulent. The presence of any single one of these indicators is sufficient grounds to terminate the call immediately and contact the institution directly through its officially published number.

Legal and Financial Consequences

The financial consequences of telephone fraud extend beyond the immediate loss. Funds transferred during a phone scam are typically moved through multiple intermediary accounts and jurisdictions within hours, making rapid recovery essential. The voluntary nature of the transaction creates specific legal challenges – the bank may initially classify the transfer as authorised and refuse a recall or refund on the grounds that the victim confirmed the payment. Under PSD2, banks are required to refund unauthorised transactions within one business day, but the classification of transactions made under fraudulent inducement remains contested across European jurisdictions. Chargeback for card payments is available within 120 days but is subject to the card network’s assessment of liability. Cross-border recovery is further complicated by the involvement of multiple jurisdictions – the sending bank in one country, the receiving account in another, intermediary structures in a third. The time-sensitive nature of telephone fraud cases makes immediate legal action critical: bank recall is effective only before funds are withdrawn from the recipient’s account, the EAPO must be filed before assets are moved, and criminal complaints must be initiated while digital evidence and transaction trails remain accessible. Every hour of delay between the fraud and the first legal action reduces the probability of recovery.

How to Protect Yourself: Practical Checklist

Protection against telephone fraud requires a single foundational principle: never make a financial decision during an inbound phone call. Every legitimate institution will allow you to terminate the call and contact them through an official channel. The practical application of this principle involves the following measures. First, if a call creates urgency or demands immediate action, terminate the call immediately – urgency is the primary indicator of fraud. Second, independently verify the caller’s identity by calling the institution directly through its officially published number – do not use any number provided during the suspicious call. Third, never disclose security codes, PINs, one-time passwords, or full card details during a phone call – no legitimate institution requires this information over the phone. Fourth, never authorise a transfer, confirm a transaction, or install software on the instruction of an inbound caller. Fifth, verify any information provided during the call through independent sources before taking any action. Sixth, consult with an independent lawyer, financial advisor, or trusted family member before making any significant financial decision prompted by a phone call. These measures, applied consistently, eliminate the vast majority of telephone fraud risk.

What to Do If You Have Been Targeted or Scammed

The first actions after discovering that you have been targeted by a telephone scam are the most important. Every hour of delay reduces the probability of fund recovery. The immediate priority is to contact your bank – report the fraud to the bank’s fraud department, request the initiation of a recall for SEPA/SWIFT transfers or a chargeback for card payments, and request the blocking of any pending or suspicious transactions. A bank recall is the fastest recovery mechanism available – but it is effective only before the funds are withdrawn from the recipient’s account, and this window is measured in hours. The second priority is to block any further access – if remote access software was installed during the call, disconnect the device from the internet immediately, change all passwords, and contact the bank to secure your accounts. The third priority is to secure all available evidence: the phone number of the caller, the time and duration of the call, any recording of the conversation if available, all SMS messages, emails, or documents received during or after the call, screenshots of any transactions or notifications, and any reference numbers or names provided by the fraudster. This evidence forms the basis of every subsequent legal procedure. The fourth priority is to file a criminal complaint with the relevant law enforcement authority – the police, the public prosecutor’s office, or a specialised cybercrime or economic crime unit. Criminal investigation is the primary tool for identifying the perpetrators and tracing the movement of funds. The fifth priority is to seek specialised legal assistance – a professional assessment of the specific circumstances determines the available recovery mechanisms, the optimal jurisdictions, and the strategy for parallel initiation of legal procedures.

Legal Mechanisms for Fund Recovery

Civil Proceedings

Civil litigation is the primary tool for recovering funds lost to telephone fraud. Proceedings are filed in the jurisdiction of the defendant’s domicile, the location of assets, or the place where the damage occurred. Grounds include fraudulent misrepresentation, unjust enrichment, breach of contract, and breach of fiduciary duty. Civil proceedings can be brought not only against the fraudster directly but also against intermediaries, payment processors, nominee directors, and connected parties who facilitated the fraud or received the funds. In telephone fraud cases where the victim authorised the transfer under fraudulent inducement, the claim is grounded in the principle that consent obtained through fraud is not valid consent – the transaction, while technically authorised, was the product of deliberate deception. Civil proceedings achieve recovery of the full amount of the loss, compensatory damages, and enforcement through EU mechanisms.

Interim Measures – Freezing Orders and EAPO

The European Account Preservation Order (EAPO, Regulation (EU) No. 655/2014) enables the freezing of a fraudster’s bank accounts across all EU member states simultaneously on an ex parte basis – without prior notice to the defendant. For telephone fraud cases where funds are moved rapidly through multiple jurisdictions, the EAPO is one of the most effective instruments available. The EAPO application must be filed immediately upon identification of the fraudster’s accounts. Without interim measures, even a successful court judgment may be unenforceable if the assets have been moved by the time the judgment is obtained.

Criminal Proceedings and Asset Seizure

Criminal proceedings initiate an investigation in which law enforcement authorities gain access to bank records, payment system data, IP logs, telecommunications operator records, and call data records. Criminal investigation is the primary tool for identifying anonymous fraudsters, establishing the network behind the scheme, and tracing the movement of funds. Criminal proceedings can lead to the seizure and confiscation of the fraudster’s assets. In cross-border cases, these powers are exercised through international cooperation mechanisms – Europol, Eurojust, and mutual legal assistance mechanisms.

Banking Mechanisms – Recall and Chargeback

Bank recall for SEPA/SWIFT transfers and chargeback for card payments through Visa/Mastercard are the fastest recovery mechanisms available. A recall is effective only before the funds are withdrawn from the recipient’s account – the window is measured in hours. Card chargebacks are available within 120 days. PSD2 requires banks to refund unauthorised transactions within one business day. In telephone fraud cases where the victim authorised the transaction under fraudulent inducement, the bank may initially refuse the recall or chargeback on the grounds that the transaction was authorised. In such cases, the grounds for the claim shift to fraudulent misrepresentation, and regulatory complaints and civil proceedings against the bank may become necessary. Banking procedures should be initiated first, in parallel with the preparation of criminal complaints and civil proceedings.

Asset Tracing

Asset tracing is the process of identifying and locating the fraudster’s assets for subsequent recovery. In telephone fraud cases, asset tracing covers bank accounts across multiple jurisdictions, the corporate structures behind the fraudulent operation, cryptocurrency wallets where funds may have been converted, real estate, and other assets held by the individuals behind the scheme. Asset tracing provides the evidentiary basis for EAPO applications and freezing orders – without locating the assets, interim measures are impossible.

Cross-Border Nature of Telephone Fraud

Telephone fraud in 2026 is virtually always cross-border in nature. The caller may be located in one country, the spoofed number registered in another, receiving bank accounts held in a third, and funds routed through intermediary structures in a fourth. This cross-border structure is deliberately used to complicate investigation and place assets beyond the reach of any single jurisdiction. Effective recovery requires simultaneous action in each relevant jurisdiction – the bank recall through the sending bank, the criminal complaint in the country of the recipient’s account, civil proceedings in the jurisdiction of the defendant’s domicile or asset location, the EAPO filed in an EU member state court, and the regulatory complaint in the country where the financial institution is licensed. All of these procedures must be launched in parallel, not sequentially. A sequential approach gives the fraudster time to move assets after each step. A parallel approach cuts off all channels simultaneously. This is precisely why a distributed team of lawyers working across multiple countries within a unified strategy is the critical advantage in telephone fraud cases.

Common Mistakes Victims Make

Victims of telephone fraud frequently make mistakes that significantly reduce the probability of fund recovery. The most common is delay – the victim feels embarrassment or disbelief and waits days or weeks before taking action, during which time the fraudster moves the funds beyond reach. The second is continuing to engage with the fraudster – in some cases, the fraudster calls back, posing as a “recovery specialist” or “investigator,” and extracts further payments or information. The third is making additional payments – after discovering the fraud, the victim is contacted by someone claiming to facilitate recovery in exchange for upfront fees, which constitutes secondary fraud (recovery scam). The fourth is failing to secure evidence – not recording the caller’s number, deleting SMS messages, failing to note reference numbers or names used by the fraudster, or losing access to transaction records before they are preserved. The fifth is attempting to resolve the matter solely through the bank without initiating criminal complaints, regulatory referrals, or civil proceedings – a bank recall alone, while essential, is often insufficient for full recovery, particularly when funds have already been moved to another jurisdiction. Each of these mistakes narrows the window for recovery and reduces the effectiveness of legal procedures.

The Veritas Advisory Group Approach

Veritas Advisory Group is a specialised structure focused exclusively on the recovery of funds lost to fraud. The firm brings together over 50 in-house and external lawyers across EU countries, Switzerland, and the United Kingdom, with over 7 years of experience handling fraud cases and over 100 successful fund recovery cases. The key elements of the approach are: exclusive specialisation in fraud and asset recovery, a distributed team across multiple jurisdictions, the ability to launch processes simultaneously in several countries from the first day of the client’s engagement, combination of civil, criminal, and regulatory instruments, and case management from the initial assessment through to enforcement and actual fund recovery.

Case Methodology

Every case is handled through a structured model. The first stage is the initial analysis and assessment of prospects – the client receives a realistic evaluation of their legal position, available mechanisms, and timelines. The second stage is the collection and analysis of evidence and transactions – documenting the payment chain, identifying recipients and intermediary structures, analysing the operational and financial infrastructure behind the fraud. The third stage is the development of the legal strategy – determining the optimal jurisdictions, mechanisms, and sequence of actions. The fourth stage is the parallel initiation of procedures – bank recall, chargeback, criminal complaint, regulatory referral, civil proceedings, and interim measures are launched simultaneously. The fifth stage is representation of the client’s interests through to enforcement and actual fund recovery.

Free Initial Case Assessment

Veritas Advisory Group provides a free initial assessment that enables the client to understand their legal position, evaluate the prospects for fund recovery, identify the available legal mechanisms, and receive a realistic estimate of timelines and probability of success. This allows the client to make an informed decision about commencing proceedings without financial commitment at the assessment stage.