Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...

Okta SSO accounts targeted in vishing-based data theft attacks

Okta is warning about custom phishing kits built specifically for voice-based social engineering (vishing) attacks.

ShinyHunters Claims 14M Panera Bread Records Exposed in Data Breach

The dataset allegedly includes names, email addresses, postal addresses, phone numbers, and account-related details.
The Bangkok Post on MSN

Leaked SSO data disclosure memo was 'just a reminder'

The Social Security Office (SSO) said a leaked internal memo which urged staff to refrain from disclosing internal information and official documents to third parties was not an attempt to block the ...
Dark Reading

Even Orgs With SSO Are Vulnerable to Identity-Based Attacks

With organizations adopting cloud services, mobile devices, and other digital technologies to meet customer needs and support an increasingly remote workforce, identity has become the security ...