<div cla 
Vishing as the Front Door to MFA Bypass
Threat reporting tied to ShinyHunters and Scattered Spider-linked activity shows voice phishing (vishing) being operationalized as a coordinated access vector against enterprise identity systems. Rather than relying solely on email-based phishing, attackers now call employees directly, impersonating IT support, security teams, or identity administrators. These calls are not random, they are tightly coupled with live phishing infrastructure and identity workflows. The goal is not to “steal a password”; it is to walk the victim through a legitimate authentication event while the attacker intercepts the outcome. This is why legacy MFA continues to “work,” yet organizations are still getting breached.
First seen on securityboulevard.com
Jump to article: securityboulevard.com/2026/02/how-to-prevent-vishing-attacks-targeting-okta-and-other-idps/
