< BACK TO NEWS
negativeSYS.SOURCE: The Hacker News2026-07-10T16:00:20+05:30

Sophisticated Phishing Campaign Exploits Microsoft Entra Passkey Enrollment for Unauthorized Access

#Phishing#Microsoft 365#Passkey Security#Data Extortion#Identity Theft

Threat actors are exploiting Microsoft Entra passkey enrollment processes through a sophisticated phishing kit, tricking users into registering malicious passkeys for unauthorized Microsoft 365 access. The attack involves real-time operator-controlled phishing pages and targets multiple industries, leveraging user unfamiliarity with passkey authentication.

A threat actor has been targeting organizations spanning multiple sectors with voice-based fake security requests that prompt Microsoft 365 users to enroll a new Entra passkey with an aim to carry out data extortion attacks.

The threat actor, tracked by Okta under the moniker O-UNC-066, has deployed a panel-controlled phishing kit that's capable of targeting the passkey enrollment process. The

Read original article

*** END OF TRANSMISSION ***

> RYANAIR PASSENGER INJURED AFTER MIDAIR ENGINE FAILURE LEADS TO CABIN WINDOW DAMAGE> LAYLO SEEKS HEAD OF FINANCE FOR SAAS GROWTH> LATE BRONZE AGE COLLAPSE: ARCHAEOLOGICAL INSIGHTS AND HISTORICAL ANALYSIS> UNPATCHED XRING VULNERABILITY IN XQUIC ENABLES REMOTE HTTP/3 SERVER CRASHES> LUMEN TECHNOLOGIES EXPANDS ASSET INVENTORY TO 1.1 MILLION VIA ADVANCED EXPOSURE MANAGEMENT> EXPOSED HACKER SERVER UNVEILS WP-SHELLSTORM WEBSHELL CAMPAIGN TARGETING WORDPRESS AND JOOMLA SITES> EU COMMISSION ALLEGES INSTAGRAM AND FACEBOOK VIOLATE DSA WITH ADDICTIVE DESIGN FEATURES> STUDY REVEALS SECURITY VULNERABILITIES IN 281 FREE ANDROID VPN APPLICATIONS> THE PHILOSOPHY OF INVISIBLE TOOLS IN SOFTWARE DEVELOPMENT> SOPHISTICATED PHISHING CAMPAIGN EXPLOITS MICROSOFT ENTRA PASSKEY ENROLLMENT FOR UNAUTHORIZED ACCESS> RYANAIR PASSENGER INJURED AFTER MIDAIR ENGINE FAILURE LEADS TO CABIN WINDOW DAMAGE> LAYLO SEEKS HEAD OF FINANCE FOR SAAS GROWTH> LATE BRONZE AGE COLLAPSE: ARCHAEOLOGICAL INSIGHTS AND HISTORICAL ANALYSIS> UNPATCHED XRING VULNERABILITY IN XQUIC ENABLES REMOTE HTTP/3 SERVER CRASHES> LUMEN TECHNOLOGIES EXPANDS ASSET INVENTORY TO 1.1 MILLION VIA ADVANCED EXPOSURE MANAGEMENT> EXPOSED HACKER SERVER UNVEILS WP-SHELLSTORM WEBSHELL CAMPAIGN TARGETING WORDPRESS AND JOOMLA SITES> EU COMMISSION ALLEGES INSTAGRAM AND FACEBOOK VIOLATE DSA WITH ADDICTIVE DESIGN FEATURES> STUDY REVEALS SECURITY VULNERABILITIES IN 281 FREE ANDROID VPN APPLICATIONS> THE PHILOSOPHY OF INVISIBLE TOOLS IN SOFTWARE DEVELOPMENT> SOPHISTICATED PHISHING CAMPAIGN EXPLOITS MICROSOFT ENTRA PASSKEY ENROLLMENT FOR UNAUTHORIZED ACCESS