If you don't fall for these extortionists' calls, they'll show up with USB sticks
Summary
A new social engineering tactic involves attackers calling potential victims to demand payment under the guise of service technicians. If the victim refuses or doesn't fall for the ruse, the attackers threaten to show up in person with USB drives to compromise their systems. This hybrid approach combines voice phishing with a physical threat.
IFF Assessment
This article describes a new social engineering tactic that blends voice phishing with a physical threat, making it harder for individuals to defend against.
Defender Context
Defenders should be aware of this evolving social engineering technique that combines remote and physical threats. Training employees to be skeptical of unsolicited calls and unexpected visitors claiming to be technicians is crucial. Emphasize verification procedures for all service requests and the risks associated with accepting unknown USB drives.