Not Even Voicemails are Safe from Phishing

Not Even Voicemails are Safe from Phishing

Phishing attacks have consistently been prominent in cybercrime throughout the past few years, not only due to their efficacy but also because there are so many avenues wherein phishing can be attempted. The first that comes to mind is email, of course, but you and your team need to keep these others in mind.

Take, for instance, a phishing voicemail…dubbed, naturally, a “phoicemail.”

Underhanded tactics like these are critical to understand and be able to identify if you are to protect your business.

How Do Phoicemail Scams Work?

In order to appreciate how these scams function, we need to consider the recent trend of deepfakes—artificially generated footage of someone based on numerous data points—and remember that these scams often also feature audio. So, if a scammer can fool people with a doctored video, it stands to reason that it’s worth trying to fool people with just the audio.

Enter phoicemail scams, where generated audio meant to mimic the supposed caller is left as a voicemail message instructing the recipient to do something they shouldn’t. For instance, sharing confidential or otherwise privileged information.

Picture it: you come back to the office after lunch, only to see that you’ve received a phone call while you were away and there’s been a message left there. You listen to your voicemail, only to hear a voice that sounds a lot like your manager requesting you to send over the credentials needed to access an account to a different email address than usual.

Would you fall for it? While it may be tempting to assume that you’d be able to pick up on how suspicious this seems, it is important to acknowledge that the fact that it isn’t coming in through an email might be enough to throw you. Plus, it isn’t unheard of for IT professionals—the ones who are arguably most conditioned to keep security in mind—to fall for these scams.

Phoicemail Threats Can Be Hard to Spot

Like many modern examples of phishing, it can be a real challenge to accurately judge whether a message has been tampered with or not.

Don’t believe us? Check out the study that MIT is currently running, where you are challenged to identify deepfakes by examining transcripts, audio recordings, and videos of Joseph Biden and Donald Trump—half of which are real, half fabricated. While some of the fraudulent audio clips included are somewhat apparent, it may be more difficult than you’d expect to separate the more convincing samples from the truth.

Phishing Awareness of All Types Needs to Be Part of Your Cybersecurity Posture

It is important that your team is aware that phishing can happen in many ways, not just through their email inboxes. Phone calls and voicemail messages, text messages, even search engine results can be phishing vectors. Your team needs to know this, and keep this lesson in mind whatever they happen to be doing.

White Mountain IT Services can help New Hampshire businesses practice these security-conscious habits, while also implementing more secure technologies and protections to help minimize cyberthreats as much as possible. Find out how we can help you and your business’ team by giving us a call at 603-889-0800 today.

Related Posts

So much goes into proper network security that it can be daunting to know where to start. Thankfully, there are plenty of great ways you can, and probably currently are, protecting your business, even if it’s on a basic level. You can consider this a...
Email remains a cornerstone in business communications, often containing sensitive information and other data that really needs to be protected. Fortunately, modern email platforms often enable you to add a little bit of protection, so long as you kn...
Regardless of your industry, there are going to be certain regulatory standards that you will be responsible for upholding. Many of these standards will be related in some way to your cybersecurity. Let’s talk about some of these cybersecurity standa...
Last week, we went over why your business’ cybersecurity processes need to involve training. This time around, we wanted to focus on the other side of things, and delve into the essential network protections that no modern business should be operatin...
The blockchain has been a hot topic in the past few years, if only tangentially. With all the buzz around cryptocurrencies, it can be easy to forget about the underlying technology that powers it and its other applications. Let’s pivot to these other...
The modern threat landscape is vast and unpredictable, and even if you think you know enough about cybersecurity to protect your business, we bet that you don’t. It’s not even just in the business world, either; individuals also struggle against cybe...
It hasn’t been very long since T-Mobile experienced its latest major hack, but unfortunately, here we are again. Hackers have again accessed customer data, with 37 million customers being affected amongst both their prepaid and subscription-based acc...
For a long time, businesses that didn’t have any cybersecurity problems would never consider investing in additional cybersecurity tools. The decision-makers of these companies simply didn’t find it necessary; and many of them had a point (until they...
Simple passwords are often the bane of a business’ existence. If you routinely use strings like Password, 123456, Guest,  or Qwerty to secure an account, then you need to reexamine your password practices before they lead to a data breach. A goo...
While many small businesses shrug off cybersecurity needs as too expensive an investment for an organization of their size, this is a potentially catastrophic mistake. The fact of the matter is that small businesses are regularly targeted by cyberatt...
One of the big advantages that Mac computers have had over the traditional PC is that they “don’t get viruses,” but how true is this claim, really? Research conducted by Elastic Security Labs proves that this is certainly not the case, discrediting t...
We get it—nobody likes to think about the prospect of being impacted by a cybersecurity incident, but it’s like any other unpleasant event in that it is best to prepare for it. In fact, today’s businesses can invest in a cyber insurance policy to hel...

Onsite Service Coverage Area

Although we provide remote services and support to businesses in over 20 states, onsite services are limited to within reasonable driving distance from our offices in NH.  We will manage a local vendor for locations outside of our service area to provide onsite assistance when needed.


Onsite Computer Support Services are available to businesses within 60 miles of Nashua New Hampshire. We have excellent onsite coverage from Concord NH, south through Manchester NH, and then down into Boston. From Northern and Central Mass, we cover from Worcester, east to the North Shore, including the Salem NH and Portsmouth NH area.

White Mountain IT Services


33 Main St, Suite 302
Nashua, NH 03064


121 Riverfront Drive
Manchester, NH 03102


Client Help Desk      603-889-2210

New Client Inquiries   603-889-0800

Open Positions