Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threats Tagged 'saas abuse'

View all threats tagged with 'saas abuse'. Filter and sort to focus on specific types of threats.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.
Active filters (1):Tag: saas abuse

Threats Tagged 'saas abuse'

Click on any threat for detailed analysis and mitigation recommendations

Operation Fake KickOff: Attackers Abuse Recruiters and SaaS to Harvest Work Credentials
0

Operation Fake KickOff is a sophisticated phishing campaign active since April 2025 that abuses legitimate SaaS platforms and cloud services to steal corporate credentials. The attackers impersonate human resources consulting firms, notably Robert Half Inc. and Aquent LLC, using 232 phishing domains and 80 command-and-control servers. They send emails via trusted platforms like Salesforce, SendGrid, and Zoho, directing victims to fake Calendly interview pages. The campaign employs an adversary-in-the-middle toolkit with browser-in-the-box techniques to create convincing Google sign-in replicas that harvest credentials and bypass multi-factor authentication (MFA) methods including email, SMS, Google Authenticator, and prompt notifications. The operation targets corporate email accounts exclusively, excluding personal email providers, and exfiltrates stolen data to Render-hosted servers and Telegram bots.

Join the discussion

Showing 1 to 1 of 1 result

Filters:Tag: saas abuse
Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses