Besides all other phishing methods, Phone Phishing is a popular way used by phishers to hunt for personal/financial information of their targets. Posing as employers, company representatives, banking officials, like in the above telephonic conversation, these attackers make fool of people for their own benefit.
Data breaches are mostly occurred due to human errors but this fact has been overlooked by organisations while making their cyber security assessment. Although removing human errors completely is not possible but it can be reduced to a great extent by implementing an effective cyber security policy for your employees.
Not just emails, the advent of social media has opened new doors for attackers to trap their target using one way or the other. For instance, attackers impersonate as someone genuine to befriend individuals with open friend lists and expand their network by sending friend requests to their friends. This way they build a genuine profile and execute their attack.