All updates
security: Investigating targeted “payroll pirate” attacks affecting US universities
Oct 9, 2025
Microsoft Threat Intelligence has uncovered a financially motivated threat actor, tracked as Storm-2657, conducting “payroll pirate” attacks against US universities by compromising employee accounts to access profiles and redirect salary payments to attacker-controlled accounts.
- Source: Microsoft Security Blog