This week, Okta warned customers about a surge in voice phishing (vishing) attacks where criminals impersonate IT support in real time. These attackers already know which MFA app you use, your helpdesk number, and exactly when to pressure you into approving a login. Groups like ShinyHunters are using real-time phishing toolkits that sync fake login pages with live phone calls. No malware. No exploits. Just persuasion. If someone calls asking you to approve an MFA request you didn’t initiate — hang up. Because modern breaches don’t break systems - They convince people. https://www.databreachtoday.com/voice-phishing-okta-customers-shinyhunters-claims-credit-a-30590
No comments:
Post a Comment