#mfa-bypass

[ follow ]
#credential-theft #phishing #payroll-fraud #akira-ransomware #sso #vishing #extortion #shinyhunters #voice-phishing
Information security
fromDataBreaches.Net
1 day ago

ShinyHunters claim to be behind SSO-account data theft attacks - DataBreaches.Net

Voice phishing targeting Okta, Microsoft, and Google SSO lets attackers bypass MFA, access corporate SaaS platforms, and steal company data for extortion.
Information security
fromTheregister
2 days ago

Crims hit the easy button for IT helpdesk scams

Custom voice-phishing kits sold on dark-web channels enable attackers to spoof authentication flows, intercept credentials and MFA codes, and orchestrate live helpdesk social-engineering.
Information security
fromTheregister
2 weeks ago

North Korea turns QR codes into phishing weapons

North Korean-linked hackers use malicious QR codes (quishing) to steal credentials and session tokens, bypass multi-factor authentication, and maintain access to targeted organizations.
Information security
fromComputerWeekly.com
1 month ago

What is driving the rise of infostealer malware? | Computer Weekly

Infostealer malware increasingly breaches credentials and session data, enabling account takeover, MFA bypass, fraud, and resale, driven by lax corporate and personal device security.
Information security
fromThe Hacker News
1 month ago

New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale

Four new phishing kits — BlackForce, GhostFrame, InboxPrime AI, and Spiderman — enable large-scale credential theft and MFA bypass using MitB and evasion techniques.
Information security
fromThe Hacker News
3 months ago

Microsoft Warns of 'Payroll Pirates' Hijacking HR SaaS Accounts to Steal Employee Salaries

Storm-2657 hijacks employee HR SaaS accounts via phishing and AitM attacks, then redirects salary payments to attacker-controlled bank accounts by modifying payment settings.
fromIT Pro
3 months ago

'Payroll Pirates' target US universities, Microsoft warns

"However, it's important to note that any SaaS systems storing HR or payment and bank account information could be easily targeted with the same technique," Microsoft researchers said. "These attacks don't represent any vulnerability in the Workday platform or products, but rather financially motivated threat actors using sophisticated social engineering tactics and taking advantage of the complete lack of multifactor authentication (MFA) or lack of phishing-resistant MFA to compromise accounts."
Information security
#akira-ransomware
more#akira-ransomware
Information security
fromSecuritymagazine
4 months ago

When Employees Help Hackers: How Threat Actors Bypass MFA

Criminals increasingly bypass MFA by tricking employees with sophisticated phishing, driving business email compromise and largely irretrievable wire fraud losses.
Information security
fromTheregister
4 months ago

Ransomware crims broke in, found recovery codes in plaintext

Unencrypted recovery codes on a desktop enabled attackers to bypass MFA, compromise detection tools, steal credentials, and deploy ransomware across the network.
fromTheregister
4 months ago

Google, Microsoft account takeover made easy via VoidProxy

The phishes target any Google and Microsoft accounts, from small businesses to large enterprises, we're told. And while Okta didn't have a confirmed victim count, "we have observed high-confidence account takeovers in multiple entities," the threat intel team told us. "By extension, we expect Microsoft and Google will have observed a larger number of ATO events, given that VoidProxy proxies non-federated users directly with Microsoft and Google servers."
Information security
[ Load more ]