Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...

ShinyHunters claim hacks of Okta, Microsoft SSO accounts for data theft

The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) ...
Infosecurity Magazine

Five Single Sign-On Best Practices to Reduce Access Risk in 2026

Understand five best practices to overcome the most common SSO failure points and how organizations can reduce identity risk ...
JD Supra

Single Sign-On Services Targeted in Vishing Attacks

We continue to alert our readers to the uptick and successful use of vishing attacks against companies. Threat actors continue to be creative ...
The Bangkok Post on MSN

Leaked SSO data disclosure memo was 'just a reminder'

The Social Security Office (SSO) said a leaked internal memo which urged staff to refrain from disclosing internal information and official documents to third parties was not an attempt to block the ...
Security Boulevard

ShinyHunters Leads Surge in Vishing Attacks to Steal SaaS Data

Check before you click. ShinyHunters is leading surge in extortion attacks using vishing to grab SSO and MFA credentials and steal data from the cloud.

ShinyHunters Claims 14M Panera Bread Records Exposed in Data Breach

The dataset allegedly includes names, email addresses, postal addresses, phone numbers, and account-related details.
Dark Reading

Even Orgs With SSO Are Vulnerable to Identity-Based Attacks

With organizations adopting cloud services, mobile devices, and other digital technologies to meet customer needs and support an increasingly remote workforce, identity has become the security ...