The Hacker News

Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms

Mandiant reports ShinyHunters-linked vishing attacks abusing MFA and SSO to breach SaaS apps, steal data, and extort ...
SecurityWeek

ShinyHunters-Branded Extortion Activity Expands, Escalates

Mandiant has observed an increase in ShinyHunters-branded attacks using evolved vishing and credential harvesting.

ShinyHunters escalates tactics in extortion campaign linked to Okta environments

Researchers warn that a recently disclosed extortion campaign linked to ShinyHunters represents an escalation of tactics used ...

Google's security team look at how ShinyHunters has rolled out SSO scams

Mandiant analyzed ShinyHunters' MO, detailing how it steals login and MFA codes.

Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...
GovInfoSecurity

Hanging Up on ShinyHunters: Experts Detail Vishing Defenses

Amidst persistent voice phishing campaigns designed to trick employees and steal sensitive corporate data, security experts recommend organizations deploy ...

US senator says AT&T, Verizon blocking release of Salt Typhoon security assessment reports

By David Shepardson WASHINGTON, Feb 3 (Reuters) - Democratic Senator Maria Cantwell on Tuesday said Verizon and AT&T are ...
SiliconANGLE

Mandiant finds 165 Snowflake customers were targeted in hacking campaign

Mandiant today revealed that at least 165 organizations were targeted by a recent hacking campaign against Snowflake Inc. customers. The Google LLC unit, which provides breach response services, is ...