Microsoft’s Detection and Response Team (DART) is tracking a new financially motivated threat actor, Storm-2755, that is running “payroll pirate” attacks quietly redirecting Canadian employees’ salaries to attacker-controlled bank accounts. Unlike earlier payroll fraud clusters such as Storm-2657, which focused on US universities, this campaign is explicitly geo-targeted at Canada. It is industry-agnostic, targeting any […] The post New Storm-2755 Campaign Redirects Salaries via Session Hijacking appeared first on Cyber Security News.