National Cyber Warfare Foundation (NCWF)

Hackers Use Fake Microsoft Entra Passkey Enrollment to Gain Microsoft 365 Access


0 user ratings
2026-07-10 11:57:38
milo
Attacks
A threat actor has been targeting organizations spanning multiple sectors with voice-based fake security requests that prompt Microsoft 365 users to enroll a new Entra passkey with an aim to carry out data extortion attacks.

The threat actor, tracked by Okta under the moniker O-UNC-066, has deployed a panel-controlled phishing kit that's capable of targeting the passkey enrollment process. The



Source: TheHackerNews
Source Link: https://thehackernews.com/2026/07/hackers-use-fake-microsoft-entra.html


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Attacks



Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.