Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...
Mandiant reports ShinyHunters-linked vishing attacks abusing MFA and SSO to breach SaaS apps, steal data, and extort ...
Mandiant analyzed ShinyHunters' MO, detailing how it steals login and MFA codes.
Researchers warn that a recently disclosed extortion campaign linked to ShinyHunters represents an escalation of tactics used ...
Compare the top 5 multi-factor authentication software in 2026. Find the best customer MFA solution for your apps with our detailed platform review.
A comprehensive developer guide to implementing secure authentication in modern applications. Covers OAuth 2.0, OIDC, ...
Following its Salesforce attacks last year, the cybercrime group has broadened its targeting and gotten more aggressive with extortion tactics.
Check before you click. ShinyHunters is leading surge in extortion attacks using vishing to grab SSO and MFA credentials and steal data from the cloud.
"Authenticator apps, biometrics and security keys are harder to steal because they’re tied to a specific device or person, ...
A prolific data ransom gang that calls itself Scattered Lapsus ShinyHunters (SLSH) has a distinctive playbook when it seeks ...
Mandiant has observed an increase in ShinyHunters-branded attacks using evolved vishing and credential harvesting.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results