Pink Extortion Group Uses Vishing to Bypass MFA and Target Microsoft 365 Cloud Data

Cybersecurity researchers have identified the Pink Extortion Group as a threat actor targeting businesses by using voice phishing (vishing) to bypass multi-factor authentication (MFA). The group steals files from Microsoft 365 cloud environments, though no specific attack dates or victim details were disclosed. The campaign was reported by Palo Alto Networks, which highlighted the group’s reliance on social engineering via phone calls to compromise credentials. No technical indicators, CVE IDs, or exact financial or operational impacts were provided in the notice. The attack vector focuses on exploiting human trust rather than software vulnerabilities.