VOIP's anonymous nature may be convenient, but it can also be used against you. Secure Computing today warned of a new phishing exploit on the loose -- dubbed "vishing" -- that uses voice-over-IP and good old-fashioned social engineering.

Santa Barbara Bank & Trust and PayPal were the first to fall prey to vishing, where an attacker telephones a credit-card customer automatically, with a war dialer or directly, and dupes him or her into revealing account information by claiming there's been fraudulent activity on their account. The victim is then instructed to dial a "bad" phone number that then prompts them to enter their account number.

The link for this article located at Dark Reading is no longer available.