- Dubbed “vishing,” the new trend is thought to be responsible for the successful breaches of Twitter and several other high-profile targets in recent months.
- The attack hinges on the increased amount of remote work being done and the common use of VPNs as an organizational security measure for those logging into company networks from home.
- Attackers first identify a target company and register lookalike domain names, populating them with phishing pages that lead to a replication of the company’s legitimate internal VPN login page. This page is designed to capture redundant security measures such as two-factor authentication (2FA) or one-time passwords (OTP) in addition to the target’s basic login credentials.
– Scott Ikeda | August 31, 2020