Click, Call, Compromise: Hackers Continue to Evolve Tactics

Microsoft Says Hackers Pivoting to Identity Compromise Akshaya Asokan (asokan_akshaya) • October 22, 2025

Hackers are as likely to log in as break in, warns Microsoft in an annual assessment of cyberthreats.

See Also: Agentic Commerce: The Technology Shaping the Future of Payments

In a report published Thursday, Microsoft said it observed a "sharp change in how threat actors achieve initial access" this year.

During the first half of 2025, identity-based attacks rose by 32% due to credentials stolen by infostealers or hackers plugging in password and email combinations plucked from bulk data breaches, said Amy Hogan-Burney, corporate vice president, customer security and trust at Microsoft.

Such tactics are allowing attackers "from breaking in to signing in," Hogan-Burney said.

Microsoft said there has been a "rapid rise" in the infostealer use. "Traditionally considered post-exploitation tools, malware families such as Lumma Stealer, RedLine, Vidar, Atomic Stealer and Raccoon Stealer are ...