PHONE CALLS & VOICEMAIL
KIWISCAN • NZ SCAM CHECKER

Phone scams: hang up, verify, stay safe.

Phone scams usually try to do one of three things:
• pressure you into paying money (often “urgent”)
• steal logins, bank details, or one-time codes (OTPs)
• trick you into installing remote-access apps or “security tools”

Check a message now See red flags What to do next

Common phone scam patterns

If you recognise any of these, stop and verify using official channels.

“Bank fraud team” call

Caller claims suspicious activity and pressures you to “secure your account”. They ask for codes, logins, or to move money to a “safe account”.

Banks won’t ask for your OTP or tell you to transfer money to “protect” it.

“NCSC / Microsoft / Spark support”

Caller claims your device is hacked, your internet is compromised, or you have “charges pending”. They push remote access or paid “fixes”.

This often ends with AnyDesk/TeamViewer installs or card payments.

Robocall / “press 1 to…”

Automated voice says there’s an “urgent issue” (IRD, immigration, parcel, warrant, power bill), and asks you to press a number to connect.

Pressing options confirms your number is active and can escalate scam attempts.

Voicemail and follow-up traps

Scammers often leave a voicemail, then send a text with a link or number.

“You have a new voicemail” link

  • Text or email says you have a voicemail and provides a link
  • Link leads to a fake login page (email, Apple ID, Google, telco)
  • Sometimes uses odd domains or shortlinks
  • Goal: steal login details or install malware

“Call back urgently” number

  • Voicemail claims fines, debts, warrants, or account problems
  • Requests urgent callback to a number not linked to an official service
  • May ask for payment, identity details, or verification codes
  • May threaten arrest or service disconnection

Phone scam red flags

If any of these happen, end the call and verify independently.

They ask for codes or logins

  • One-time codes (OTPs), passcodes, internet banking logins
  • Card details, CVV, or “verification” payments
  • They want you to read a code from SMS/email
  • They want you to approve a push notification

They push remote access

  • AnyDesk, TeamViewer, “remote support”, screen-share
  • “Install this to prove your identity”
  • “We need access to remove malware”
  • They keep you on the line while you do it

Urgency and fear

  • “Your account will be frozen today”
  • “Police are on the way” / “warrant for your arrest”
  • “Pay now to avoid fees”
  • They refuse to let you hang up and call back

They redirect you elsewhere

  • They provide a “special” number or link instead of official contacts
  • They ask you to transfer money to a “safe” account
  • They ask for gift cards or crypto
  • They request secrecy (“don’t tell anyone”)

What to do next

Simple steps that stop most phone scams immediately.

Step 01

Hang up and pause

End the call. Don’t argue. Don’t stay on the line “to be polite”. Scammers rely on pressure and momentum.

It’s safer to hang up first, then verify calmly.
Step 02

Verify using official contacts

Call back using the number on the back of your bank card, your bank app, or the official website you type yourself. Never use a number the caller gives you.

If it’s real, the official channel will confirm it.
Step 03

If you shared details or installed anything

Contact your bank immediately, change passwords, and remove remote-access apps. If money moved, treat it as urgent. Keep notes/screenshots for reporting.

Use the safety shortcuts below for step-by-step actions.
FAST SAFETY SHORTCUTS

Need immediate steps?

If you clicked a link, paid money, or shared details — these pages walk you through what to do next.

I clicked a link I paid money I shared details

Phone scams FAQ

Quick answers to common questions.

Can scammers spoof real NZ numbers?

Yes. Caller ID can be faked. Treat the story and requests (codes, payments, remote access) as the signal — not the number displayed.

What does KiwiScan treat as HIGH risk for phone-related messages?

Any hard indicator: a link/shortlink, a phone/WhatsApp handle, a payment request, a login/OTP request, install/download/remote-access prompts, or crypto wallet instructions.

Should I call back the number from a voicemail?

Only if you can confirm it matches an official number you found yourself (bank app, official website, back of your card). Otherwise, treat it as suspicious.

Got a suspicious voicemail or call?

Paste the message or number into KiwiScan and check it before you respond.

SCAN NOW