When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Cybercriminals are usingMicrosoftSway to host landing pages used inphishingcampaigns, experts have claimed.
Its part of the Microsoft Office suite and can be accessed through the online window.
Transparent phishing
Netskope found unnamed threat actors used Sway to create presentations that held a QR code.
This code redirected the victims to a phishing landing page that looks like a Microsoft 365 login site.
Those that fall for the ruse end up giving away their login credentials.
This is not the first time hackers were observed using QR codes in phishing attacks.
Cybercriminals have been using QR codes for years now.
However, this campaign also employs something called transparent phishing.
ViaBleepingComputer
