The vishing (voice phishing) incident described in an earlier diary seemed to use a rudimentary voice synthesizer to request information from the caller. An ISC reader noted that in more sophisticated attacks, scammers employ "sampling"--recorded snippets of actual calls to sound more legitimate. He submitted the following outline of the call he received the other day:
The ISC reader pointed out that this call highlights the following evolution in the scammers' tactics:
Thanks, ISC reader! -- Lenny Lenny Zeltser leads a regional security consulting team at Savvis and teaches a course on reverse-engineering malware at SANS. |
Lenny 216 Posts Aug 29th 2008 |
Thread locked Subscribe |
Aug 29th 2008 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!