Insider Threat Matrix™Insider Threat Matrix™
  • ID: PR022.002
  • Created: 07th July 2026
  • Updated: 07th July 2026
  • MITRE ATT&CK®: T1566T1566.004
  • Contributor: The ITM Team

Outbound Social Engineering via Voice

A subject uses voice communication to deceive, pressure, or persuade another person into disclosing information, changing a control, approving access, or taking an action that may support a later infringement. This may occur through corporate telephony, mobile calls, voice over IP services, conference platforms, helpdesk calls, or external calling infrastructure.

 

This behavior may involve impersonation, false authority, urgency, familiarity, or procedural manipulation. The subject may contact service desk personnel, administrators, reception staff, colleagues, vendors, or other individuals who can influence access, identity verification, physical entry, operational processes, or administrative controls. The intended outcome may include account recovery, password reset assistance, disclosure of internal procedures, access approval, security exception handling, or other enabling action.