In 2022, Twillio, a cloud-based communication service provider, was compromised through a social engineering assault on its staff. Via a voice-based phishing scam, the perpetrator deceived a staff member and acquired their login details. A message stating that Twilio employees' passwords had expired or their schedules had been revised appeared to be an official communication from Twilio's IT department. A simulated Twilio login page was used by the attacker to request them to log in once again.