Signal

Okta warns of vishing attacks exploiting fake Microsoft Entra passkey enrollment

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-07-10 10:30 UTCUpdated 2026-07-10 20:18 UTC
rss
cveexploitsbreachesmalwarethreat_actorsadvisories
Trend in the last 24h
Current brief openSource links open
This current signal is open on the public brief with summary, metadata, source links, and full evidence. Pro adds compare-over-time, alerts, exports, and workflow.
No card needed for the free brief.
Evidence trail (top sources)
top sources (3 domains)domains are deduped. counts indicate coverage, not truth.
3 top sources shown
SecurityWeek
securityweek.com · securityweek.com · 2026-07-10 11:06 UTC
Overview

Okta has alerted Microsoft 365 users to a vishing campaign where attackers impersonate IT staff to trick victims into enrolling a fraudulent Microsoft Entra passkey.

Entities
OktaMicrosoftMicrosoft Entra
Score total
1.3
Momentum 24h
3
Posts
3
Origins
3
Source types
1
Duplicate ratio
0%
Why now
  • The campaign is active and targets Microsoft 365 users, a widely used platform.
  • Okta's recent warning highlights the urgency to address this emerging threat.
  • The use of panel-controlled phishing kits indicates increasing automation and sophistication in attacks.
Why it matters
  • Attackers bypass strong authentication by exploiting passkey enrollment processes.
  • Organizations across sectors are at risk of account takeover and data extortion.
  • Awareness of this vishing tactic is critical for improving security posture and user training.
LLM analysis
Topic mix: lowPromo risk: lowSource quality: high
Recurring claims
  • Attackers use vishing calls to trick Microsoft 365 users into enrolling fake Microsoft Entra passkeys, enabling account takeover.
How sources frame it
  • Okta And Security News Sources: neutral
All evidence
All evidence
SecurityWeek
securityweek.com · securityweek.com · 2026-07-10 11:06 UTC
Okta warns of vishing scheme that extorts data
SC Media · scworld.com · 2026-07-10 20:18 UTC
Hackers Use Fake Microsoft Entra Passkey Enrollment to Gain Microsoft 365 Access
thehackernews · thehackernews.com · 2026-07-10 10:30 UTC
Show filters & breakdown
Posts loaded: 0Publishers: 3Origin domains: 3Duplicates: -
Showing 3 / 0
Top publishers (this list)
  • securityweek.com (1)
  • SC Media (1)
  • thehackernews (1)
Top origin domains (this list)
  • securityweek.com (1)
  • scworld.com (1)
  • thehackernews.com (1)