Technology

QR Phishing attacks rise fivefold in second half of 2025: Kaspersky

Published by
Staff Reporter

ISLAMABAD: Kaspersky reports a spike in phishing emails containing malicious QR codes. Detections for these jumped from 46,969 in August to 249,723 in November – a more than fivefold growth – as cybercriminals increasingly exploit QR codes.

Attackers use QR codes in emails more frequently because they provide a simple and cost-effective way to conceal malicious URLs, evading detection by many protective solutions.

These QR codes are often embedded directly in email bodies or, even more commonly, within PDF attachments – an evolution that both masks phishing links and encourages users to scan them on mobile phones, which may have weaker security than work PCs.

Malicious QR codes commonly appear in mass phishing campaigns as well as targeted ones. Links embedded within them may lead to phishing forms impersonating login pages for services like Microsoft accounts or internal corporate portals, designed to steal usernames, passwords, and other credentials.

Fake HR notifications urging employees to review or sign documents, such as vacation schedules, or even view lists of terminated staff, ultimately direct to credential-stealing sites.

Fraudulent invoices or purchase confirmations in PDF attachments, often combined with vishing (voice phishing) tactics that prompt victims to call provided phone numbers to “cancel” or clarify the transaction, enabling further social engineering attacks.

These tactics exploit trust in routine business communications, leading to credential theft, account takeovers, data breaches, and financial fraud.

“Malicious QR codes have evolved into one of the most effective phishing tools this year, particularly when hidden in PDF attachments or disguised as legitimate business communications like HR updates.

The explosive growth in November highlights how attackers are capitalizing on this low-cost evasion technique to target employees on mobile devices, where protection is often minimal. Without advanced image analysis at the email gateway and safe scanning practices, organizations are left vulnerable to credential compromise and downstream breaches,” comments Roman Dedenok, Anti-Spam Expert at Kaspersky.

To defend against this escalating threat, Kaspersky recommends deploying a mail server security solution such as Kaspersky Security for Mail Server that provides a trusted and secure corporate email exchange, countering spam, email-borne infections, all forms of phishing, business email compromise (BEC), QR code attacks, and other threats.

Staff Reporter

Recent Posts

Gurpatwant exposes Modi’s failed effort to change Sikh’s history through movie Satluj

ISLAMABAD: The highly controversial Indian movie named 'Satluj' has been the talk of the town…

21 minutes ago

Emergency LNG cargo purchase initiated by PLL

ISLAMABAD: In view of the increasing tension in the region and the fears of closure…

33 minutes ago

IMF projects higher inflation than government’s target

ISLAMABAD (Rizwan Abbasi): The International Monetary Fund (IMF) has projected that Pakistan’s average inflation rate…

2 hours ago

PM Shehbaz condemns attacks on KSA, reaffirms Pakistan’s solidarity

ISLAMABAD: Prime Minister Shehbaz Sharif on Tuesday strongly condemned the recent attacks on Saudi Arabia,…

2 hours ago

Gold prices drop by Rs5,600 per tola in Pakistan

KARACHI: The gold prices in Pakistan have been reduced to Rs 424,136 following a reduction…

3 hours ago

When will Safar moon be sighted? SUPARCO predicts

ISLAMABAD: According to Pakistan Space and Upper Atmosphere Research Commission (SUPARCO), the new moon of…

4 hours ago