Image: Getty Images
Kaspersky has expanded its cybersecurity training portfolio with the launch of a new vishing (voice phishing) module on its Automated Security Awareness Platform (ASAP). The move comes amid a surge in voice-based scams targeting corporate employees, with attackers using increasingly manipulative tactics to gain access to sensitive data and financial assets.
The newly introduced module aims to help organisations strengthen their first line of defence by teaching staff how to recognise and respond to vishing attempts—fraudulent schemes in which attackers use phone calls to extract personal information, banking details, or login credentials.
“As social engineering evolves, so must the way we educate people about it. Vishing is no longer just a threat to individuals – it’s increasingly being used to target organizations, leading to financial losses, data leaks, and reputational damage,” said Tatyana Shumaylova, senior product marketing manager at Kaspersky Security Awareness. “Our new vishing module equips users with the knowledge to defend themselves against voice-based deception – a threat that is becoming increasingly sophisticated and personal. We help companies prepare their employees to recognize and resist this type of attack. Since vishing is often a gateway to more serious breaches, it’s vital to build awareness across a wide range of related topics.”
Read: Crypto scam alert: 5 things to know about the new Google Forms fraud, says Kaspersky
Vishing attacks are often launched through urgent emails asking recipients to call a listed phone number. Unlike email-based phishing, which allows victims time to assess suspicious links or content, vishing relies on high-pressure tactics over the phone. Attackers commonly use fear and urgency to pressure employees into revealing confidential information.
Kaspersky cited recent cases highlighting the scale of the threat. Irish bank AIB reported a 79 per cent year-on-year increase in vishing incidents in early 2025, including one scam in which a business customer nearly lost $47,000. In another high-profile case, attackers identified by Google as group UNC6040 used vishing tactics to target Salesforce users at around 20 organisations. Victims were tricked into installing a malicious application, granting attackers full access to corporate systems.
To counter these evolving threats, the new Kaspersky ASAP module features real-world case studies, interactive lessons, and simulated scenarios. The platform, which now supports over 30 languages, is designed to be accessible and scalable for global enterprises.
Kaspersky’s latest training initiative reflects a broader industry focus on strengthening cyber hygiene through continuous employee education, particularly in response to the growing sophistication of social engineering attacks targeting businesses of all sizes.
