216.73.216.86

Phishing on the Edge of the Web and Mobile Using QR Codes

· Published 14/02/2026 03:41 · Modified 16/02/2026 11:04

Export JSON

Essential information

Published
14/02/2026 03:41
Modified
16/02/2026 11:04
Tags
2026-02-14 account takeover geopolitical conflict mobile security phishing russia social engineering ukraine url shorteners
Related entities
3 observables, 2 techniques (mitre), 4 malware, 43 others

Description

This article explores the misuse of QR codes in attacks, focusing on three key areas: QR codes with concealing malicious destinations, in-app deep links used to steal credentials and control victims' apps, and QR codes bypassing app store security via direct malicious app downloads. The research reveals an average of 11,000 daily detections of malicious QR codes, with financial services being the most targeted industry. Attackers are leveraging QR code shorteners, in-app deep links, and direct downloads to evade security controls and exploit users' trust in QR codes. The article highlights specific attack scenarios, including account takeovers through messaging apps and distribution of suspicious gambling apps.

External references