Channels

Sticky Video Player with Ad Breaks
📺 WATCH US NOW!

Microsoft warns of new “Payroll Pirate” scam stealing employees’ direct deposits

October 10, 2025

Microsoft is warning of an active scam that diverts employees’ paycheck payments to attacker-controlled accounts after first taking over their profiles on Workday or other cloud-based HR services.

Payroll Pirate, as Microsoft says the campaign has been dubbed, gains access to victims’ HR portals by sending them phishing emails that trick the recipients into providing their credentials for logging in to the cloud account. The scammers are able to recover multi-factor authentication codes by using adversary-in-the-middle tactics, which work by sitting between the victims and the site they think they’re logging in to, which is, in fact, a fake site operated by the attackers.

Not all MFA is created equal

The attackers then enter the intercepted credentials, including the MFA code, into the real site. This tactic, which has grown increasingly common in recent years, underscores the importance of adopting FIDO-compliant forms of MFA, which are immune to such attacks.

Read full article

Comments

Content Accuracy: Keewee.News provides news, lifestyle, and cultural content for informational purposes only. Some content is generated or assisted by AI and may contain inaccuracies, errors, or omissions. Readers are responsible for verifying the information. Third-Party Content: We aggregate articles, images, and videos from external sources. All rights to third-party content remain with their respective owners. Keewee.News does not claim ownership or responsibility for third-party materials. Affiliate Advertising: Some content may include affiliate links or sponsored placements. We may earn commissions from purchases made through these links, but we do not guarantee product claims. Age Restrictions: Our content is intended for viewers 21 years and older where applicable. Viewer discretion is advised. Limitation of Liability: By using Keewee.News, you agree that we are not liable for any losses, damages, or claims arising from the content, including AI-generated or third-party material. DMCA & Copyright: If you believe your copyrighted work has been used without permission, contact us at dcma@keewee.news. No Mass Arbitration: Users agree that any disputes will not involve mass or class arbitration; all claims must be individual.

Related Posts

Sundays are for Sam’s Club, as the chain starts opening earlier than Costco
Sundays are for Sam’s Club, as the chain starts opening earlier t ...
October 10, 2025
Samsungs Project Moohan vs Apple Vision Pro: How the rumored specs compare
Samsungs Project Moohan vs Apple Vision Pro: How the rumored spec ...
October 10, 2025
Pixel Buds 2a review: Googles new mid-range earbuds are a little too… mid?
Pixel Buds 2a review: Googles new mid-range earbuds are a little ...
October 10, 2025

Sponsored Advertisement