内容来源：https://lifehacker.com/tech/that-phone-call-from-google-is-probably-a-scam?utm_medium=RSS

内容总结：

【警惕新型电信诈骗：骗子竟能伪装成“熟人”来电】
近日，一种利用“来电显示伪造”技术的新型电信诈骗手段引发关注。诈骗分子通过技术手段伪装成受害人熟悉的号码（如亲友、银行或谷歌等知名机构），以“账户异常”“安全警报”等话术诱导受害人提供银行信息、登录密码或转账汇款。

此类骗局中，诈骗分子往往通过伪造来电号码和名称博取信任，甚至能精准模仿受害人与亲友、机构的关系。近期有用户反映接到伪装成谷歌官方的来电，以“处理账户安全问题”为由索要验证信息。更恶劣的案例包括冒充家人谎称紧急用钱，或伪装政府机构要求缴费。

专家提醒，目前完全屏蔽此类骗局仍存在技术难度，但公众可通过以下方式防范：
1. 避免轻易泄露手机号及个人信息；
2. 对索要资金、密码或制造紧迫感的来电保持警惕；
3. 即使来电显示为可信机构，也应直接挂断并通过官方渠道核实；
4. 切记正规机构不会突然来电要求转账或提供敏感信息。

建议接到可疑电话时立即挂断，并通过官方公布的联系方式主动致电核实，切勿直接回拨来电显示的号码。

中文翻译：

想必你已知道，不要接听或回复陌生号码的狂轰滥炸——随着智能手机推出更强大的诈骗检测和垃圾信息拦截功能，做到这点越来越容易。但当来电显示是你认识的号码，无论是朋友、家人还是商业伙伴，你的戒心往往会降低。

骗子深谙此道，并利用这种信任实施"来电显示欺骗"——通过伪造电话号码或联系人名称，诱使你提供银行账号、登录凭证等个人信息，甚至直接索要钱财。

诈骗分子可伪装成你信任的号码来电
来电显示欺骗通过技术手段篡改电话上的联系人信息，使号码或名称与你熟悉的对象完全吻合。其操作手法多样，但最基本的是：骗子只需掌握主叫方与被叫方的号码及双方关系，再借助能篡改来电显示的应用程序即可实施。

近期典型案例中，Reddit用户反映接到显示为"谷歌官方"的来电。对方以平静语气提醒账户存在异常登录活动，要求用户通过推送通知验证信息。另一种套路是谎称有人正试图将你的邮箱非法添加为Gmail账户的恢复地址。无论哪种方式，黑客最终目的都是窃取登录凭证以劫持账户。

更令人不安的案例层出不穷：从冒充家人紧急求援，到伪装政府机构催缴费用。转账诈骗也常伴随来电显示欺骗，让你误以为正在与银行或联邦官员通话（这两种情况都令人恐慌且均系骗局）。

如何防范来电显示欺骗
目前或许无法完全杜绝这类欺骗，但你可以通过培养良好数字卫生习惯来识别骗局：尽量避免泄露手机号码，减少在线分享的个人数据。

与所有骗局类似，激发强烈情绪和制造紧迫感都是危险信号。行骗者可能通过威胁或伪装遇险亲友来施加压力，也可能抛出诱人馅饼，或谎称存在需要立即解决的安全问题。

永远警惕索要钱财或个人信息的要求。请确信：包括国税局、联邦贸易委员会和谷歌在内的权威机构绝不会突然来电要求转账或索取密码。即使来电显示是企业名称或认证号码，也不应继续对话、按下任何按键或提供数据。请立即挂断，通过官方网站等可信渠道找到号码后主动回拨核实。

英文来源：

You probably know by now not to pick up or respond to the barrage of communication from numbers you don't recognize—this gets easier as smartphones roll out more robust scam detection and spam prevention features. But you are less likely to be suspicious of a call from a contact you recognize, whether that's a friend, family member, or organization you do business with.
Scammers know this, and they're capitalizing on your trust with a trick known as caller ID or phone number spoofing, an attempt to convince you to hand over personal information—like bank account numbers and login credentials—or send them money, or both.
Scammers can pretend to call you from a number you trust
Caller ID spoofing involves manipulating the contact information that appears on your phone when you receive a call, so the number or name matches that of someone you know. The mechanics of phone spoofing vary, but at its most basic level, the method simply requires scammers to know the caller's number, the recipient's number, and the relationship between the two as well as access to an app that can trick caller ID.
In one of the latest examples, users on Reddit report receiving calls that, according to both the name and number that show up on caller ID, are from Google. The person on the other end calmly alerts the recipient to suspicious activity, such as unauthorized login attempts, on their account and requests that they engage with a push notification to verify their information. Another version of the ruse is that someone is trying to fraudulently add your email as a recovery address on their Gmail account. In either case, hackers are attempting to collect your login credentials and hijack your account.
There are plenty of even more alarming iterations of phone spoofing, from callers impersonating family members begging for money in an emergency to those pretending to represent government agencies demanding payment for services. Money transfer scams may also involve caller ID spoofing so you think you're talking to either your bank or federal officials (both are scary and neither are real).
How to fight caller ID spoofing
You probably won't be able to prevent caller ID spoofing entirely—at least for now. But you can identify these scams as they roll in and practice good digital hygiene to minimize the risk that your information will be compromised. Avoid giving out your phone number where possible, and minimize the personal data you share online.
As with any scam, eliciting strong emotions and giving a sense of urgency are red flags. Attackers may threaten you or pose as a friend or family member in danger to induce fear and pressure you to act quickly. They may also say something that sounds too good to be true. Or they'll alert you to some type of security issue that needs to be resolved ASAP.
You should always be wary of any request for payment or personal information. It's safe to assume that trusted organizations, including the IRS, the FTC, and Google, will not call you out of the blue to demand money or login credentials. Even if the company name or associated number appears on your caller ID, you shouldn't engage in the conversation, press any buttons, or provide any data. Hang up right away and call the person back directly using contact information you trust, such as a phone number you've found on an official website.