Security News > 2021 > January > FBI warns of voice phishing attacks targeting employees at large companies

The FBI is cautioning companies to beware of a slew of voice phishing attacks aimed at capturing the login credentials of employees.

In an advisory released last Thursday, the FBI revealed that as of December 2019, cybercriminals have been working together on social engineering campaigns targeting employees at large firms both in the US and abroad. The criminals are taking advantage of VoIP platforms to launch voice phishing, or vishing, attacks.

Last August, the FBI and the Cybersecurity and Infrastructure Security Agency warned about a vishing scheme in which criminals posing as other people called employees working from home to try to obtain their account credentials.

"Whether it's an expertly-crafted email or a convincing voice message, it's essential that employees approach any incoming request for information with a critical eye in order to confirm it's coming from a trusted source. If there is any question as to the validity, employees should immediately flag it to their security team."

"The first line of defense against phishing attacks is your employees," Schless said.

"Nowadays, it's incredibly important to train employees on how to spot these phishing attempts, especially as they do more work on mobile devices. In addition to training employees, securing any device that has access to your network is paramount to preventing issues like this. Without protecting those devices with modern endpoint protection, there will be a significant gap in your overall security posture."

News URL

https://www.techrepublic.com/article/fbi-warns-of-voice-phishing-attacks-targeting-employees-at-large-companies/#ftag=RSS56d97e7