Researchers have highlighted tactics used by fraudsters today in voice-based phishing campaigns.
Phishing attempts involve fraudulent messages sent over email, social media networks, SMS, and other text-based platforms. They may appear to be from your bank, popular online services -- such as PayPal or Amazon -- or they may attempt to lure in victims with promises of tax rebates and competition prizes.
These messages often contain malicious attachments designed to deploy malware, or they may try to direct victims to fake websites.
So-called "vishing" is a subset of phishing techniques that combines 'voice' and 'phishing'. Victims may be cold-called or emails could contain phone numbers, voice notes, and messages -- but the overall goal is the same: to swipe your personal data.
Scam artists can employ "spray and pray" techniques in campaigns and blast out thousands of emails in one go, and now, voice over internet protocol (VoIP) technology has allowed fraudsters to do the same, all while spoofing their caller IDs and identities.
In separate case studies published by Armorblox
on Thursday, the team highlighted two Amazon vishing attacks intent on stealing customer credit card details -- and how the use of voice messages can bypass existing spam filters.
www.zdnet.com
