What is Vishing in Cybersecurity?

Offensive Security

Voice phishing, a social engineering attack conducted over phone calls. Attackers impersonate IT support, banks, or government agencies to extract sensitive information or convince targets to install remote access software. Caller ID spoofing makes vishing calls appear to come from legitimate numbers.

Why Vishing Matters for Your Cybersecurity Career

Vishing attacks bypass email security controls entirely, making them a growing concern for cybersecurity teams. Penetration testers include vishing in social engineering assessments. SOC analysts handle vishing reports from employees. Organizations increasingly need security awareness training that covers voice-based threats.

Which Cybersecurity Roles Use Vishing?

Penetration TesterView career guide →SOC AnalystView career guide →Incident ResponderView career guide →

Related Cybersecurity Terms

Phishing Social Engineering Smishing Pretexting Spear Phishing

Related Cybersecurity Certifications

CompTIA Security+View certification guide →CEHView certification guide →

Frequently Asked Questions

What does Vishing mean in cybersecurity?

Why is Vishing important in cybersecurity?

Which cybersecurity roles work with Vishing?

Cybersecurity professionals who regularly work with Vishing include Penetration Tester, SOC Analyst, Incident Responder. These roles apply Vishing knowledge within the Offensive Security domain.

Sources

FCC Vishing Advisory

Definitions are original explanations written for career development purposes. For authoritative technical definitions, refer to NIST, ISO, or the relevant standards body.

Last verified: April 2026Report an inaccuracy

Related Resources

Related Cybersecurity Career Guides

Related Cybersecurity Certifications

Get cybersecurity career insights delivered weekly

Join cybersecurity professionals receiving weekly intelligence on threats, job market trends, salary data, and career growth strategies.