TheRegister's platform is a leading technology news website, offering insights into IT industry news, hardware reviews, and software updates. Through articles, analysis, and opinion pieces, TheRegister offers insights into cybersecurity threats, technology trends, and industry developments. Readers can stay updated with the latest news and analysis from the world of technology and IT business.

The Register

North Korean state-backed hackers are using QR codes embedded in spear phishing emails to steal credentials and bypass multi-factor authentication. The Kimsuky group targets thinktanks, academic institutions, and government organizations by redirecting victims who scan QR codes to fake Microsoft 365, Okta, or VPN login portals. This "quishing" technique is particularly effective because traditional security tools cannot inspect QR code graphics, and victims typically scan them on unmanaged mobile devices. The FBI recommends implementing controls to inspect QR links and treating mobile phones as managed endpoints.

North Korea turns QR codes into phishing weapons