Home/ MITRE Matrix/ Initial Access/ T1566.004

T1566.004Spearphishing Voice

T1566.004 — Spearphishing Voice is a MITRE ATT&CK technique in the Initial Access tactic. Clankerusecase tracks 4 detection use cases covering it and 10 threat-intel articles citing it.

Initial Access

View on the matrix → Filter Detection Library MITRE official spec ↗

4Use cases

10Articles

0Sub-techniques

1Tactic

↑ Parent technique: T1566 · Phishing

Use cases covering this technique (4)

Microsoft Teams external-tenant chat from unverified IT-helpdesk impersonator Internal delivery · hunting DSP [LLM] Quick Assist launched followed by remote interactive session (UNC3753 vishing pretext) Bespoke delivery · hunting DSΣPDDCS [LLM] Privnote[.]com self-destructing-note URL access from corporate endpoint Bespoke delivery · hunting DSΣPDDCS [LLM] Bling Libra: Entra device join immediately after vishing-driven MFA registration Bespoke install · alerting DSPDD

Articles citing this technique (10)

crit Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered art-15

high Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit art-17

high Over 400 Arch Linux packages compromised to push rootkit, infostealer art-25

high New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets art-41

crit Cybersecurity Stars Awards 2026: Winners Announced Across 95 Categories art-48

high When “Hi, This Is IT” Comes Through Microsoft Teams art-98

crit AI brands as bait: How threat actors are using the AI hype in social engineering art-102

crit UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign art-108

crit 2026 World Cup: Discussing The World’s Biggest Game’s Attack Surface art-187

crit Out of the Crypt: The Evolving Cyber Extortion Economy art-193