Identity-based attacks: MFA bypass, token theft, help desk social engineering, credential phishing, Google Workspace invite phishing, CrowdStrike Kali365, in-person law firm visits (SRG)

CrowdStrike data confirms MFA bypass via help desk social engineering and device code token theft (Kali365) dominating financial services. Sophos survey: 71% of enterprises hit by identity-related breaches, non-human identities blind spot (41% of breaches). New: Google Workspace invite phishing campaign abusing Google Sites and compromised accounts. Microsoft cryptojacking campaign uses SEO poisoning and AI chatbot results to target high-end PC gamers. FBI warns of SRG group conducting in-person visits to US law firms to steal data – physical social engineering escalation.