ACR Stealer campaigns use ClickFix lures, JPEG steganography, and WebDAV to steal browser tokens, passwords, PDFs, and synced ...
New Helix extortion group steals SharePoint data after compromising Microsoft 365 accounts through voice phishing and MFA ...
A new data-extortion group called Helix is using identity-focused tactics such as voice phishing (vishing), device code ...
Microsoft found that two separate threat actors were operating inside the same compromised environment at the same time, complicating detection and incident response. The attacks were linked to ...