BRIEF

Phishing · ActiveRisk: HighRegion: GlobalHub: Citizen Fraud AlertsBrief #00391Priority Score: 75Phishing · ActiveRisk: HighRegion: GlobalHub: Citizen Fraud AlertsBrief #00391Priority Score: 75

Mandiant Reports Surge in Voice-Based Phishing Attacks

HIGH RISK

BRIEF #00391

Phishing Global Citizen Fraud Alerts

Mandiant Reports Surge in Voice-Based Phishing Attacks

March 23, 2026 at 06:01 PM

Priority75

Technology · Finance · Healthcare

2.2

Always First

Executive Risk Brief

HIGH RISK

Incident Type

Phishing

Risk Level

High

Affected Sectors

Technology, Finance, Healthcare, Critical Infrastructure

Geographic Impact

Global

Severity Index

75 / 100

ALERT

Immediate Enterprise Concern

Employees are increasingly vulnerable to sophisticated social engineering via voice calls that bypass automated email filtering systems.

2.3

Incident Overview

What Happened

Mandiant observed multiple attack campaigns throughout the previous year that utilized voice-based phishing as the initial access vector. Threat actors are increasingly leveraging voice communication to manipulate employees into divulging credentials or facilitating unauthorized access. This tactic represents a strategic pivot away from traditional email-based phishing, which is often mitigated by modern security gateways.

◆

2.4

Strategic Impact

Why It Matters

Vishing attacks are highly effective because they exploit human psychology and trust, often circumventing technical security layers that focus primarily on digital traffic. As organizations harden their email environments, attackers are shifting to voice channels to achieve similar outcomes with potentially higher success rates. This trend necessitates a broader approach to security awareness training that includes voice-based social engineering scenarios.

◆

2.5

Conditional Advisory

Citizen Safety Summary

Live Citizen Advisory · Global

Phishing Safety Alert

Est. Reports Filed

Score 75

Active Since

Mar 23, 2026

Sectors Targeted

Technology, Finance

Be cautious of unsolicited phone calls asking for sensitive information, passwords, or remote access to your computer. Even if the caller claims to be from a trusted organization or IT department, verify their identity through an official, known contact number before sharing any data.

2.6

Operational Directives

QPulse Advisory Block

Immediate Action

Time-sensitive · Act now

Update security awareness training modules to include specific examples and red flags associated with voice-based social engineering.

Monitoring Recommendation

Detection & visibility

Monitor for unusual patterns of help desk requests, such as multiple password reset or multi-factor authentication bypass requests originating from voice channels.

Preventive Control

Reduce attack surface

Implement strict verification protocols for all sensitive requests received via phone, requiring callback procedures to verified internal numbers.

Governance Consideration

Policy & compliance

Establish a formal policy for handling voice-based requests for sensitive information, ensuring that no credentials or access tokens are ever shared over the phone.

QPulseIntelligence

Advisory purposes only · QPulse Security Intelligence Platform · 2026 · Brief #00391

2.2

Always First

Executive Risk Brief

HIGH RISK

Incident Type

Phishing

Risk Level

High

Affected Sectors

Technology, Finance, Healthcare, Critical Infrastructure

Geographic Impact

Global

Severity Index

75 / 100

ALERT

Immediate Enterprise Concern

Employees are increasingly vulnerable to sophisticated social engineering via voice calls that bypass automated email filtering systems.

2.3

Incident Overview

What Happened

◆

2.4

Strategic Impact

Why It Matters

◆

2.5

Conditional Advisory

Citizen Safety Summary

Live Citizen Advisory · Global

Phishing Safety Alert

Est. Reports Filed

Score 75

Active Since

Mar 23, 2026

Sectors Targeted

Technology, Finance

2.6

Operational Directives

QPulse Advisory Block

Immediate Action

Time-sensitive · Act now

Update security awareness training modules to include specific examples and red flags associated with voice-based social engineering.

Monitoring Recommendation

Detection & visibility

Monitor for unusual patterns of help desk requests, such as multiple password reset or multi-factor authentication bypass requests originating from voice channels.

Preventive Control

Reduce attack surface

Implement strict verification protocols for all sensitive requests received via phone, requiring callback procedures to verified internal numbers.

Governance Consideration

Policy & compliance

Establish a formal policy for handling voice-based requests for sensitive information, ensuring that no credentials or access tokens are ever shared over the phone.

QPulseIntelligence

Advisory purposes only · QPulse Security Intelligence Platform · 2026 · Brief #00391