O-unc-066 is a apt_group tracked across 1 threat cluster and 1 intelligence report mention on ThreatCluster. First observed July 11, 2026; most recent activity July 11, 2026.
Since April 2026, a threat actor identified as O-UNC-066, also known as 'Pink', has been executing a vishing campaign aimed at Microsoft 365 users. The campaign exploits a new passkey enrollment feature introduced by…