top of page

Search

Roasting 0ktapus: The phishing campaign going after Okta identity credentials

Stormsec
Sep 6, 2022
1 min read

For many years, cybercriminals have used social engineering and phishing attacks to trick unsuspected victims into providing their credentials. These credentials have been used to provide cybercriminals with access to a wide range of company resources for a number of well-documented purposes.

REFERENCE: https://blog.group-ib.com/0ktapus

TAGS: phishing , 2FA , MFA , 0ktapus

INDUSTRIES: Telecommunications, Financial

TARGETED COUNTRIES: Canada, United States of America

ATT&CK IDS: T1195 - Supply Chain Compromise, T1036 - Masquerading, T1110 - Brute Force, T1566 - Phishing, T1192 - Spearphishing Link

Read More:

https://otx.alienvault.com/pulse/6307925a7f9aa39ee9c66d3b

Recent Posts

UNC961: Three Encounters with a Financially Motivated Threat Actor

UNC961: Three Encounters with a Financially Motivated Threat Actor

DUCKTAIL: Threat Operation Re-emerges with New LNK, PowerShell, and Other Custom Tactics to Avoid De

DUCKTAIL: Threat Operation Re-emerges with New LNK, PowerShell, and Other Custom Tactics to Avoid De

Stealing the LIGHTSHOW — North Korea's UNC2970

Stealing the LIGHTSHOW — North Korea's UNC2970

Comments

Commenting on this post isn't available anymore. Contact the site owner for more info.

bottom of page