New QR Code Phishing Campaign Exploits Microsoft Sway to Steal Credentials

August 29, 2024

Cybersecurity researchers are calling attention to a new QR code phishing (aka quishing) campaign that leverages Microsoft Sway infrastructure to host fake pages, once again highlighting the abuse of legitimate cloud offerings for malicious purposes.
“By using legitimate cloud applications, attackers provide credibility to victims, helping them to trust the content it serves,” Netskope Threat

Source: Read More

Previous ArticleCISA Flags Critical Apache OFBiz Flaw Amid Active Exploitation Reports

Next Article Critical WPML Plugin Flaw Exposes WordPress Sites to Remote Code Execution

Highlights

CVE-2025-46820 – GitHub phpgt/Dom GitHub Token Disclosure

May 6, 2025

CVE ID : CVE-2025-46820

Published : May 6, 2025, 7:16 p.m. | 19 minutes ago

Description : phpgt/Dom provides access to modern DOM APIs. Versions of phpgt/Dom prior to 4.1.8 expose the GITHUB_TOKEN in the Dom workflow run artifact. The ci.yml workflow file uses actions/upload-artifact@v4 to upload the build artifact. This artifact is a zip of the current directory, which includes the automatically generated .git/config file containing the run’s GITHUB_TOKEN. Seeing as the artifact can be downloaded prior to the end of the workflow, there is a few seconds where an attacker can extract the token from the artifact and use it with the GitHub API to push malicious code or rewrite release commits in your repository. Any downstream user of the repository may be affected, but the token should only be valid for the duration of the workflow run, limiting the time during which exploitation could occur. Version 4.1.8 fixes the issue.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

How Red Hat just quietly, radically transformed enterprise server Linux

OpenAI wants ChatGPT to be your ‘super assistant’ – what that means

The best Linux VPNs of 2025: Expert tested and reviewed

One of my favorite gaming PCs is 60% off right now

`document.currentScript` is more useful than I thought.

`document.currentScript` is more useful than I thought.

Adobe Sensei and GenAI in Practice for Enterprise CMS

Over The Air Updates for React Native Apps

You can now open ChatGPT on Windows 11 with Win+C (if you change the Settings)

You can now open ChatGPT on Windows 11 with Win+C (if you change the Settings)

Microsoft says Copilot can use location to change Outlook’s UI on Android

TempoMail — Command Line Temporary Email in Linux

New QR Code Phishing Campaign Exploits Microsoft Sway to Steal Credentials

Chrome Zero-Day Alert: CVE-2025-5419 Actively Exploited in the Wild

CISA Adds 5 Actively Exploited Vulnerabilities to KEV Catalog: ASUS Routers, Craft CMS, and ConnectWise Targeted

This Deep Learning Paper from Eindhoven University of Technology Releases Nerva: A Groundbreaking Sparse Neural Network Library Enhancing Efficiency and Performance

When is One Vulnerability Scanner Not Enough?

Integrating KeywordLogger with Test Listeners in Katalon Studio

LockBit 3.0 Hits Croatiaâ€™s hospital KBC Zagreb, Indonesiaâ€™s Tin Manufacturer PT Latinusa

CVE-2025-46820 – GitHub phpgt/Dom GitHub Token Disclosure

11 Best Free and Open Source Linux HDR Imaging Software

Apple’s 18.8-inch foldable might hit the market in 2027 and run macOS

CVE-2025-48942 – vLLM JSON Schema Deserialization Denial of Service

New QR Code Phishing Campaign Exploits Microsoft Sway to Steal Credentials

Related Posts