| ID | Name |
|---|---|
| ATAGS-T1029.001 | Spearphishing Link |
| ATAGS-T1029.002 | Spearphishing Voice |
| ATAGS-T1029.003 | Phishing Attachment |
| ATAGS-T1029.004 | Spearphishing via Service |
Threat actors may use voice communications to ultimately gain access to victim systems. Spearphishing voice is a specific variant of spearphishing. It is different from other forms of spearphishing in that it employs the use of manipulating a user into providing access to systems through a phone call or other forms of voice communications. Spearphishing frequently involves social engineering techniques, such as posing as a trusted source (ex: Impersonation) and/or creating a sense of urgency or alarm for the recipient.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.