Holistic Testing and
Phishing attacks use email to solicit sensitive information by imitating a trustworthy entity. Examples include financial institutions requesting account information, humanitarian organizations raising money for natural disaster recovery, and non-profit organizations during political elections.
Smishing utilizes SMS texts in attempt to extract data and sensitive information from employees. Text messages often link to a webpage, email, or phone number with a malicious call to action such as asking to input an confirm a PIN/password.
Vishing is a social engineering attack that
leverages voice communication. Simple attacks are automated messages requesting the victim to call back a malicious phone number, while more complicated (and more successful) vishing attacks involve human-to-human interaction from initial contact and integration with other mediums of communication such as SMS.