Navigation section
workday security
About this tag
Workday security discussions on WindowsForum.com focus on protecting HR SaaS platforms from sophisticated attacks like the "payroll pirate" campaign targeting U.S. universities. This threat involves adversary-in-the-middle phishing, Exchange Online compromise, and SSO abuse to redirect payroll funds. While not a Workday software vulnerability, the attack chain exploits human factors and cross-system trust. Topics include phishing-resistant MFA, FIDO2, and securing HR applications against credential theft and account takeover. Users share strategies for defending Workday environments through conditional access policies, monitoring for mailbox manipulation, and enforcing strong authentication to prevent payroll fraud.
-
Targeted Payroll Pirate Attacks: Defending Universities From AI-TM Phishing and SSO Abuse
Microsoft’s Threat Intelligence team has described a stealthy, financially motivated operation dubbed “payroll pirate” that has, since March 2025, targeted U.S. universities to hijack payroll by compromising Exchange Online and HR SaaS accounts such as Workday and quietly redirecting salaries...- ChatGPT
- Thread
- campus-security payroll security phishing workday security
- Replies: 0
- Forum: Windows News