#voice-phishing

[ follow ]
#cybersecurity #salesforce #shinyhunters #data-breach #social-engineering #data-theft #mfa-bypass #repatriation
fromDataBreaches.Net
1 week ago

ShinyHunters claim to be behind SSO-account data theft attacks - DataBreaches.Net

The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) accounts at Okta, Microsoft, and Google, enabling threat actors to breach corporate SaaS platforms and steal company data for extortion. In these attacks, threat actors impersonate IT support and call employees, tricking them into entering their credentials and multi-factor authentication (MFA) codes on phishing sites that impersonate company login portals.
Information security
Information security
fromTheregister
5 days ago

Canva among ~100 ShinyHunters credential-theft targets

ShinyHunters targeted about 100 Okta SSO accounts, using voice‑phishing to steal credentials, enroll attacker devices in MFA, and pivot into SaaS to exfiltrate data.
Information security
fromTheregister
1 week ago

ShinyHunters claims Okta customer breaches, leaks data

ShinyHunters used Okta voice-phishing to access Crunchbase and Betterment, leaked millions of PII records, and claimed additional breaches including SoundCloud.
Information security
fromTheregister
1 week ago

Crims hit the easy button for IT helpdesk scams

Custom voice-phishing kits sold on dark-web channels enable attackers to spoof authentication flows, intercept credentials and MFA codes, and orchestrate live helpdesk social-engineering.
World news
fromwww.dw.com
3 months ago

South Koreans held in Cambodia return home under arrest DW 10/18/2025

Dozens of South Koreans detained in Cambodia for alleged cyberscam operations were repatriated under arrest to face criminal investigation in South Korea.
fromwww.theguardian.com
3 months ago

Student's alleged torture death by Cambodia scammers sparks turmoil in South Korea

At a cabinet meeting on Tuesday, Lee said protecting the lives and safety of citizens is the government's greatest responsibility and called for all scam victims to be swiftly repatriated. The number of kidnappings of South Koreans in Cambodia has soared in recent months, prompting national security adviser Wi Sung-lac to form an emergency task force for the swift repatriation of citizens affected by scams.
World news
Mobile UX
fromGSMArena.com
5 months ago

Samsung adds Voice Phishing detection in the One UI 8 phone app

Voice phishing detection in Samsung's One UI 8 alerts users to possible AI-generated scam calls.
#cybersecurity
fromTechCrunch
5 months ago
Privacy professionals

Hacker used a voice phishing attack to steal Cisco customers' personal information | TechCrunch

Marketing tech
fromTechzine Global
7 months ago

Hacking group steals Salesforce data by impersonating IT support

The hacker group UNC6040 exploits voice phishing to gain credentials and access to Salesforce from employees in large organizations.
Growth hacking
fromThe Hacker News
7 months ago

Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App

UNC6040 specializes in vishing campaigns targeting Salesforce for data theft.
The group uses social engineering tactics to impersonate IT support.
Attackers deploy a modified Salesforce Data Loader for unauthorized access.
The threats allow lateral movement within victims' networks to gather more data.
fromTechCrunch
5 months ago
Privacy professionals

Hacker used a voice phishing attack to steal Cisco customers' personal information | TechCrunch

Marketing tech
fromTechzine Global
7 months ago

Hacking group steals Salesforce data by impersonating IT support

The hacker group UNC6040 exploits voice phishing to gain credentials and access to Salesforce from employees in large organizations.
Growth hacking
fromThe Hacker News
7 months ago

Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App

UNC6040 specializes in vishing campaigns targeting Salesforce for data theft.
The group uses social engineering tactics to impersonate IT support.
Attackers deploy a modified Salesforce Data Loader for unauthorized access.
The threats allow lateral movement within victims' networks to gather more data.
more#cybersecurity
Marketing tech
fromZDNET
7 months ago

Cybercriminals are stealing business Salesforce data with this simple trick - don't fall for it

Beware of vishing attacks targeting Salesforce; hackers may impersonate IT support to steal data.
[ Load more ]