Security News > 2024 > August > New QR Code Phishing Campaign Exploits Microsoft Sway to Steal Credentials
2024-08-28 06:49
Cybersecurity researchers are calling attention to a new QR code phishing (aka quishing) campaign that leverages Microsoft Sway infrastructure to host fake pages, once again highlighting the abuse of legitimate cloud offerings for malicious purposes. "By using legitimate cloud applications, attackers provide credibility to victims, helping them to trust the content it serves," Netskope Threat
News URL
https://thehackernews.com/2024/08/new-qr-code-phishing-campaign-exploits.html
Related news
- Threat Actors Exploit Microsoft Sway to Host QR Code Phishing Campaigns (source)
- Microsoft Sway abused in massive QR code phishing campaign (source)
- Void Banshee APT Exploits Microsoft MHTML Flaw to Spread Atlantida Stealer (source)
- PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing (source)
- Microsoft: Ransomware gangs exploit VMware ESXi auth bypass in attacks (source)
- Microsoft 365 anti-phishing feature can be bypassed with CSS (source)
- Microsoft 365 anti-phishing alert “erased” with one simple trick (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- Cybercriminals exploit file sharing services to advance phishing attacks (source)
- Blind Eagle Hackers Exploit Spear-Phishing to Deploy RATs in Latin America (source)