North Korean hackers using malicious QR codes in spear phishing, FBI warns

Kimsuky's latest attacks can bypass email protections and MFA to steal M365 and VPN accounts.
Bleeping Computer

Microsoft Sway abused in massive QR code phishing campaign

A massive QR code phishing campaign abused Microsoft Sway, a cloud-based tool for creating online presentations, to host landing pages to trick Microsoft 365 users into handing over their credentials.
Security Boulevard

Why QR Codes Are Education’s New Phishing Blind Spot

So, when an attacker sends a fake UCPath payroll notification with a QR code linking to a credential harvesting site, a SEG ...
CPO Magazine

FBI Alert: North Korean Hackers Using Malicious QR Codes in Phishing Attacks

The FBI has warned about North Korean hackers Kimsuky leveraging QR codes in phishing attacks targeting U.S. and foreign government entities, academia, think tanks, and others.