The article discusses the alarming rise of vishing, or voice phishing, as a method used by cybercriminals to obtain sensitive information from targets through phone calls. According to CrowdStrike's 2025 Global Threat Report, these attacks surged by 442% in the latter half of 2024. Cybercriminals employ tactics such as pretending to be IT staff and using social engineering techniques to create a sense of urgency, often requesting credentials or gaining remote access to victims' computers. The report highlights multiple campaigns leveraging spam emails to set the stage for these deceptive phone calls.
One increasingly popular approach is vishing, or voice phishing. The attacker tricks someone into sharing account credentials or other information through a simple phone call.
According to the latest data from CrowdStrike, vishing attacks jumped 442% in the second half of 2024 compared with the first half, highlighting a troubling trend.
In these particular campaigns, the scammers convinced employees to set up remote support sessions, using Microsoft Quick Assist and Microsoft Teams for communication.
Vishing used in these attacks often involves help desk social engineering, where the attacker poses as IT personnel to stress urgency and extract sensitive information.
Collection
[
|
...
]