Topic: corporate data theft

Sort by: Relevance | Date
  • Microsoft Entra Accounts Targeted in Vishing Attacks
    February 20, 2026

    Microsoft Entra Accounts Targeted in Vishing Attacks

    A new wave of attacks combines device code phishing with voice phishing (vishing) to compromise Microsoft Entra accounts, exploiting the legitimate OAuth 2.0 device authorization flow to steal authentication tokens without traditional password theft. The **ShinyHunters** extortion group is believ...

    Read More »
  • SoundCloud Data Breach Exposes 29.8 Million Accounts
    January 29, 2026

    SoundCloud Data Breach Exposes 29.8 Million Accounts

    A late 2025 breach at SoundCloud compromised personal data from nearly 30 million accounts, primarily exposing email addresses and public profile information, though not financial or password data. The attack was carried out by the ShinyHunters extortion group, which stole the data, attempted to ...

    Read More »
  • ownCloud Urges MFA Activation Following Credential Theft
    January 8, 2026

    ownCloud Urges MFA Activation Following Credential Theft

    ownCloud is urging all users to immediately enable multi-factor authentication (MFA) to block unauthorized access, even if login credentials are stolen. The company clarified its platform was not hacked; attackers instead used credentials stolen by malware from employee devices to access accounts...

    Read More »

Related Topics

threat actors (2) shinyhunters gang (2) data breach (2) multi-factor authentication (2) phishing attacks (1) single sign-on (1) extortion attempts (1) security vulnerabilities (1)