
New Phone Scam Targets Workers to Steal Company Data from SharePoint
Scammers are calling workers, pretending to be IT support, to trick them into giving access to company SharePoint files and stealing data.
Source
BleepingComputer
Original headline: New Helix vishing group emerges in SharePoint data theft attacks
Plain-English summary by GetCyberRight. Read the full report at the source above.
A new scam group called Helix is targeting workers through phone calls and fake login pages. The attackers call employees pretending to be from their company's IT department or tech support. During these calls, they convince workers to approve login requests or enter codes that give the scammers access to company SharePoint sites where documents and files are stored.
Once inside, they steal sensitive company data and may threaten to release it unless the company pays money. This affects anyone who uses SharePoint at work, especially if your company stores documents, spreadsheets, or sensitive information there. If you work from home or in an office and have access to company SharePoint sites, you are a potential target.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
The scammers are particularly focused on tricking people through phone calls combined with realistic looking login pages. They may also abuse multi-factor authentication systems by convincing you to approve login requests during the call.
- Do not approve any login requests or enter any codes while on the phone.
- Hang up and call your IT department using a number you find yourself, not one the caller provides.
- Never share passwords, codes, or approve authentication requests just because someone asks on the phone.
- Report the suspicious call to your company's security or IT team right away.
- If you think you may have fallen for this scam, contact your IT department immediately so they can secure your account. Protect yourself from phone scams by following this simple rule: legitimate IT support will never call you unexpectedly and ask you to approve logins or share codes during the call. Treat any unsolicited call asking for account access with suspicion. Always verify by contacting your company through official channels. Teach everyone in your household who works remotely about this threat. Make it a family rule that work accounts are never accessed or modified based on unexpected phone calls, no matter how urgent the caller makes it sound.
Curated from trusted cybersecurity sources by GetCyberRight
Source: BleepingComputerStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Considering Switching from Windows to Linux? Here is One User's Experience
A longtime Windows user tried Linux Ubuntu on an old laptop to see if it could replace Windows 11. The experience had challenges but positive results.
2 min read
Trying Linux on an Old Laptop: Could This Free System Work for Your Family?
A technology writer tested Linux Ubuntu on an old laptop. It could give new life to older computers your family no longer uses.
2 min read
The Person Hired to Help Ransomware Victims Was Actually Working With the Criminals
A negotiator who was supposed to help companies targeted by ransomware secretly worked with the attackers instead. This shows why choosing who to trust in a crisis matters.
2 min read
The Person Hired to Help Ransomware Victims Was Actually Working With Criminals
A cryptocurrency employee secretly helped hackers extort $75 million from businesses. This case shows why choosing who handles a cyberattack matters.
2 min read