Microsoft Warns of "Payroll Pirate" Attacks Targeting Canadian Employees

A financially motivated threat actor tracked as Storm-2755 is targeting Canadian employees in "payroll pirate" attacks to hijack accounts and steal salary payments. The attacks specifically focus on diverting payroll deposits by compromising employee credentials. Microsoft identified the campaign but did not disclose exact timelines or technical methods used in the intrusion. The primary impact involves financial theft through unauthorized access to payroll systems. No specific CVEs, dates, or additional technical details were provided in the report.