During a security-awareness debrief, an employee reports receiving an unsolicited VoIP call from someone claiming to be corporate IT support. The caller created a sense of urgency and asked the employee to provide their network username and password over the phone. Which term best describes this social-engineering technique?
Vishing-short for voice phishing-uses live or automated phone or VoIP calls, often with caller-ID spoofing, to trick victims into surrendering credentials, banking details, or other sensitive data. Because the attack is delivered by voice rather than email, it can bypass spam filters and feel more convincing. Phishing refers broadly to email-based lures, smishing relies on SMS/text messages, and a VoIP takeover focuses on hijacking the telephony infrastructure itself rather than social-engineering users.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
How does vishing differ from traditional phishing?
Open an interactive chat with Bash
What makes VoIP systems vulnerable to vishing attacks?