QR Codes Are Now Threat Attack Targets

Hackers are diversifying attack methods to include QR code phishing campaigns, according to HP Inc. Beginning in February 2022, Microsoft began blocking macros in Office files by default, making it harder for attackers to run malicious code. Data collected by the HP Threat Research team shows that in the next quarter, attackers began changing their techniques to find new ways to breach devices and steal data. “We have seen malware distributors like Emotet try to work around Office’s stricter macro policy with complex social engineering tactics, which we believe are proving less effective. But when one door closes another opens — as shown by the rise in scan scams, malvertising, archives and PDF malware,” explains Alex Holland, Senior Malware Analyst, HP Wolf Security threat research team. Whether or not social engineering is less effective, threat actors still rely on it. In Q4, HP found twenty-four popular software projects imitated in malvertising campaigns used to infect PCs with eight malware families. The attacks rely on users clicking on search engine advertisements, which leads to malicious websites that look almost identical to the real websites.