vishing
Coverage of vishing in the Nexus archive.
- Silent Ransom Group Hits US Law Firms in Escalating Extortion Attacks
The financially motivated group Silent Ransom Group is using vishing, IT impersonation, and in-person office intrusions to target US law firms, stealing data and extorting victims. These attacks are part of escalating efforts to exploit vulnerabilities in legal institutions for financial gain.
- UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign
Cybersecurity researchers revealed a data theft extortion campaign targeting U.S. organizations in professional, legal, and financial services between January and May 2026. The campaign, attributed to UNC3753, involved vishing and physical intrusions, with Google Mandiant and Google Threat Intelligence Group identifying the threat actor.
- Charter breach warning: What customers should know
Charter Communications (Spectrum) confirmed a cybersecurity incident after ransomware group ShinyHunters listed it on a leak site. Hackers claimed to steal millions of customer records via a vishing attack, but Charter stated sensitive data like private telecom account information was not released.
- ADT data breach exposes customer information
ADT confirmed a data breach where a cybercrime group, ShinyHunters, stole customer information, including names, phone numbers, addresses, and partial Social Security numbers. The breach occurred via a vishing attack on an employee's Okta account, but ADT claims no payment data or security systems were compromised.
- Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks
Cybersecurity researchers have identified two cybercrime groups, Cordial Spider and Snarky Spider, using vishing and SSO abuse to conduct rapid, high-impact SaaS extortion attacks. These groups operate within SaaS environments, stealing data quickly while leaving minimal traces.