Security News

Cybersecurity news aggregator

⚔️
HIGH Attacks Help Net Security

ShinyHunters flip the script on MFA in new data theft attacks

shinyhunterspanera-breadsoundcloudmatch-grouptinder
  • What: The ShinyHunters group is bypassing multi-factor authentication (MFA) using social engineering techniques to steal data.
  • Affected: Panera Bread, SoundCloud, Match Group (Tinder, Hinge, Match, OkCupid), and Crunchbase have been successfully targeted.
  • Why: Attackers are using MFA prompts as part of their social engineering pretext to gain access.
  • Impact: Data theft from targeted organizations.
Read Full Article →

Multi-factor authentication (MFA) is supposed to defend against phishing attacks, but threat actors operating under the ShinyHunters banner are using it as a pretext in ongoing social engineering attacks aimed at bypassing it. Among those successfully targeted in these latest hacking spree are Panera Bread, SoundCloud, Match Group (owner of online dating services Tinder, Hinge, Match and OkCupid) and Crunchbase. There will likely be many more victims, as Silent Push researchers detected active targeting or … More → The post ShinyHunters flip the script on MFA in new data theft attacks appeared first on Help Net Security .

Related Articles

HIGH Let them eat sourdough: ShinyHunters claims Panera Bread as stolen credentials victim The Register Security MEDIUM ShinyHunters swipes right on 10M records in alleged dating app data grab The Register Security MEDIUM Hackers Leak 5.1 Million Panera Bread Records SecurityWeek HIGH ShinyHunters claims Okta customer breaches, leaks data belonging to 3 orgs The Register Security
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn