Microsoft Warns of Payroll Pirate Scam Hijacking Employee Paychecks

October 13, 2025Source: arstechnica.com

Found this useful? Share it with your network

Microsoft has alerted healthcare organizations to the "Payroll Pirate" scam, which exploits vulnerabilities in cloud-based HR services to redirect employee paychecks to attacker-controlled accounts. By utilizing phishing tactics to capture login credentials and intercept multi-factor authentication (MFA) codes, scammers can gain unauthorized access to HR portals like Workday. This incident underscores the inadequacies of certain MFA methods, prompting a critical need for stronger security measures, such as FIDO-compliant solutions, to protect sensitive employee data. Healthcare professionals must reassess their cybersecurity protocols to guard against increasingly sophisticated attacks that compromise financial and personal information.

Read Full Article

Opens on arstechnica.com

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News