These services exploit technology and vulnerable API endpoints from legitimate businesses (like e-commerce or food delivery sites) to trigger automated calls.