A few days ago we commented on the blog about the increase in QR code scams. A Recent Scam Campaign Uses Intentionally Damaged Word Documents as a Lure in Fake Emails, that pretend to come from payroll and human resources departments.
These messages promise information about bonuses or employment benefits and contain attachments that appear corrupted. When trying to open them, A notice of “Unreadable content” and the user is prompted to recover the file.
However, This process leads to a phishing website that seeks to steal login credentials, particularly Microsoft.La technique is novel because it takes advantage of the damaged state of documents to evade email security systems.
Although these attachments do not contain malicious code, include a QR code that redirects to a fake site designed to trick victims. This approach has proven effective because traditional antivirus systems have difficulty detecting threats on seemingly corrupted documents.
To prevent falling for these scams, Users are advised not to interact with emails from unknown senders, especially those that include suspicious attachments or messages related to urgent work issues.
When in doubt, The legitimacy of the mail must be confirmed by a network administrator before opening any files.
This type of attack underscores the importance of keeping security systems up to date and strengthening cybersecurity awareness to identify signs of human and technological fraud attempts.
Fountain: Bleeping Computer