You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
payroll fraud
About this tag
Payroll fraud on WindowsForum.com covers advanced cyberattacks targeting payroll systems, as seen in Microsoft's Storm-2755 research. This campaign uses adversary-in-the-middle (AiTM) session hijacking, malvertising, and SEO poisoning to bypass MFA and redirect Canadian wages to attacker accounts. The tag focuses on modern, malware-light techniques that abuse business workflows and legitimate login infrastructure, highlighting the evolution of payroll fraud beyond simple credential theft.
Microsoft’s latest Storm-2755 research is a sharp reminder that payroll fraud has evolved far beyond simple credential theft. In the campaign Microsoft DART analyzed, attackers used malvertising, SEO poisoning, and adversary-in-the-middle (AiTM) phishing to hijack sessions, bypass MFA, and...