Subj : QR codes are being used in phishing attacks against US institutio To : All From : TechnologyDaily Date : Thu Aug 17 2023 12:30:03 QR codes are being used in phishing attacks against US institutions Date: Thu, 17 Aug 2023 11:28:39 +0000 Description: Hackers sent hundreds of phishing emails to a single company in an attempt to steal Microsoft 365 login credentials. FULL STORY ====================================================================== Cybersecurity researchers from Cofense recently observed a large-scale phishing campaign that targeted, among others, a major U.S. energy company. What makes this campaign unique is the fact that the attackers used QR codes to bypass email security solutions at scale, which is not something we see very often. Phishing is a key attack vector, with nine in ten cyberattacks starting through this communications channel. However, email security solutions have become quite good at filtering abusive content over the years, which is why the majority of phishing emails that carry either malicious links, or attachments, never usually make it to victims inboxes. Creative solutions This has prompted some threat actors to get creative, and use innovative methods to sneak past security gateways. One such method is the deployment of QR codes, which redirect the victim to a phishing site. As the QR codes come in the form of a .PNG or .JPG, theyre able to evade detections. Another unique aspect of this particular campaign is its scale, with thousands of emails being sent out - again a rare sight. Read more > Some of Google's new domain names could pose a serious security risk > These dangerous phishing attacks are more common than ever - here's what you need to know > Here's our list of the best endpoint protection software Cofense says that the attackers distributed roughly 1,000 emails, with almost a third (29%) targeting a single, unnamed but prominent U.S. energy company. Other emails were sent to companies operating in the manufacturing (15%), insurance (9%), technology (7%), and financial services (6%) sectors. The QR codes redirected the victims to a malicious landing page resembling a Microsoft 365 login page, with the obvious goal of stealing the login credentials for the service. In the email, the victims were told they needed to update their account settings within three days, adding a false sense of urgency. The good news is that victims still need to take action to get compromised, which shouldn't be easy for well-trained employees. However, recent reports have shown that many workers are still falling for fake and dangerous emails. These are the best firewalls to keep your business safe Via: BleepingComputer ====================================================================== Link to news story: https://www.techradar.com/pro/qr-codes-are-being-used-in-phishing-attacks-agai nst-us-institutions --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .