Microsoft: Canadian employees targeted in payroll pirate attacks

A financially motivated threat actor named Storm-2755 is targeting Canadian employees through payroll pirate attacks, using malicious Microsoft 365 sign-in pages to steal authentication tokens and bypass multi-factor authentication. The attackers then manipulate HR communications and banking information to hijack salary payments, with Microsoft recommending stronger authentication methods and immediate revocation of compromised tokens to mitigate these threats.