CloudZ RAT Exploits Windows Phone Link to Steal Credentials and Bypass 2FA — What Every Windows User Should Do Now
What if your one-time passwords never even needed to reach your phone for attackers to use them? In a campaign disclosed by Cisco Talos on May 6, 2026, that unsettling “what if” has become reality. Attackers are hijacking Microsoft’s Windows Phone Link feature via a stealthy plugin called “Pheno,” bundled with the CloudZ remote access…