ShinyHunters Target SSO Accounts in Voice Phishing Attacks

ShinyHunters Target SSO Accounts in Voice Phishing Attacks

First seen 25 Jan 2026, 04:44 UTC WebpronewsBleepingcomputerDatabreachesThecyberexpressCyberscoop+80 80% similarity 50.9

Article Content

Browse articles
ThreatCluster

The ShinyHunters extortion gang has claimed responsibility for a series of voice phishing attacks targeting single sign-on (SSO) accounts at major platforms including Okta, Microsoft, and Google. In these attacks, threat actors impersonate IT support to trick employees into providing their credentials and multi-factor authentication codes, enabling access to corporate SaaS platforms and potential data theft for extortion purposes.

ThreatCluster AI

Community

Browse all →