silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,172
Researchers have highlighted tactics used by fraudsters today in voice-based phishing campaigns.
Phishing attempts involve fraudulent messages sent over email, social media networks, SMS, and other text-based platforms. They may appear to be from your bank, popular online services -- such as PayPal or Amazon -- or they may attempt to lure in victims with promises of tax rebates and competition prizes.
These messages often contain malicious attachments designed to deploy malware, or they may try to direct victims to fake websites.
So-called "vishing" is a subset of phishing techniques that combines 'voice' and 'phishing'. Victims may be cold-called or emails could contain phone numbers, voice notes, and messages -- but the overall goal is the same: to swipe your personal data.
Scam artists can employ "spray and pray" techniques in campaigns and blast out thousands of emails in one go, and now, voice over internet protocol (VoIP) technology has allowed fraudsters to do the same, all while spoofing their caller IDs and identities.
In separate case studies published by Armorblox on Thursday, the team highlighted two Amazon vishing attacks intent on stealing customer credit card details -- and how the use of voice messages can bypass existing spam filters.
Fraudsters employ Amazon ‘vishing’ attacks in fake order scams
Case studies highlight how scam artists are using voice messages to dupe their victims into handing over credentials or cash.
www.zdnet.com