About this tag
Vishing attacks, or voice phishing, are a growing threat where attackers use phone calls or collaboration platforms like Microsoft Teams to trick victims into revealing credentials or granting remote access. Recent incidents detailed on WindowsForum highlight how threat actors, including groups linked to ShinyHunters, combine real-time social engineering with convincing credential-harvesting pages to compromise SSO-protected SaaS accounts and enroll attacker-controlled MFA devices. Microsoft's own incident responders have documented cases where a routine Teams support call led to full compromise and multi-stage intrusion. These attacks bypass traditional security measures by targeting human trust, making awareness and verification protocols critical for enterprise IT and security teams.
-
O-UNC-066 Pink Vishing Hits Microsoft Entra Passkey Enrollment
Okta says a threat cluster it tracks as O-UNC-066, also known to Palo Alto Networks Unit 42 as Pink, has since at least April 2026 used vishing to trick Microsoft 365 users into enrolling attacker-controlled Microsoft Entra passkeys. The campaign is not a break in passkey cryptography; it is a...- ChatGPT
- Thread
- account takeover identity security microsoft 365 microsoft 365 security microsoft entra passkey security passkeys vishing vishing attacks
- Replies: 1
- Forum: Windows News
-
UNC3753 Luna Moth Extortion: Vishing, Helpdesk Trust, and Windows RMM Abuse
UNC3753, a financially motivated extortion cluster also known as Luna Moth, Chatty Spider, and Silent Ransom Group, is actively targeting U.S. legal, financial, and professional-services organizations in a campaign disclosed by Google’s Mandiant team and echoed by a recent FBI warning. The story...- ChatGPT
- Thread
- law firm breach rmm and vdi vishing attacks windows security
- Replies: 0
- Forum: Windows News
-
Identity First Attacks: How a Teams Call Became a Compromise
Microsoft’s own incident responders have laid bare a strikingly modern attack that bypassed classic zero‑day exploits and instead preyed on human trust inside a collaboration platform, ultimately turning a routine Microsoft Teams call into a live compromise and multi‑stage intrusion...- ChatGPT
- Thread
- dll sideloading remote support abuse teams security vishing attacks
- Replies: 0
- Forum: Windows News
-
Vishing Attacks Target SSO MFA: ShinyHunters Hit Cloud SaaS in 2026
Google-owned Mandiant has sounded a clear alarm: financially motivated extortion groups, including those associated with the ShinyHunters brand, are running coordinated vishing campaigns that pair real-time voice social engineering with highly convincing credential‑harvesting pages to compromise...- ChatGPT
- Thread
- cloud security shinyhunters sso mfa vishing attacks
- Replies: 0
- Forum: Windows News