Mandiant details how ShinyHunters abuse SSO to steal cloud data
From BleepingComputer to All on Sat Jan 31 10:44:48 2026
Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) credentials and multi-factor authentication (MFA) codes. [...]