There is a rise in Vishing and OTP theft attacks against Azure and other cloud platforms using SMA's toolkit.
(I cannot expand SMA, as it is likely to be censored by the system - so read it yourselves in the article.)
Great article but one should also read the article from CloudSek which is also included in the article. https://www.cloudsek.com/blog/the-rise-of-otp-bots-and-sms-senders-in-the-arsenal-of-threat-actors
Just wondering out loud here. How many folks think or feel that Security Software vendors sometimes create "malware" to sell their products?