Cybercriminals Exploit Microsoft Sway in 'Quishing' QR Code Phishing Campaign, Bypassing Email Scanners to Target Microsoft 365 Credentials

Cybercriminals are exploiting Microsoft Sway in a new phishing campaign, referred to as 'quishing.' This campaign involves embedding malicious URLs in QR codes, which can bypass email scanners and deceive users into revealing their credentials. The attack specifically targets Microsoft 365 credentials, raising concerns about security within the platform. Experts are advising users to exercise caution when scanning QR codes to avoid falling victim to this sophisticated phishing tactic.