Skip to content
Auto-CTI
Back to all actors

Helix

Nation-state Active
Mentions
1
First seen
09 Jul 2026
Last seen
09 Jul 2026

Relevant to you · Relevant

Threat focus:
phishing / becespionage / aptindustrial / ot espionage
Sector / region:
Manufacturing

Origin

Unattributed

Sources

inferred Confidence medium

Profile

The new Helix vishing group has emerged in attacks targeting data theft from SharePoint. Through voice phishing, victims are tricked into revealing credentials. The group does not use known malware but relies on social engineering. Details on target industries and regions are currently unknown.

Affected vendors

Microsoft

Activity (8 weeks)

22
23
24
25
26
27
28
29

Recent activity

ESC