Technology
FBI warns QR code phishing used in North Korean cyber spying
NEWYou can now listen to Fox News articles!
The Federal Bureau of Investigation has issued a warning about a growing cyber threat that turns everyday QR codes into spying tools.
According to the bureau, a North Korean government-sponsored hacking group is using a tactic known as quishing to target people in the United States.
The goal is simple. Trick you into scanning a QR code that sends you to a malicious website. From there, attackers can steal login credentials, install malware or quietly collect device data.
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
WHATSAPP WEB MALWARE SPREADS BANKING TROJAN AUTOMATICALLY
The FBI is warning Americans about a growing cyber threat that uses QR codes to steal data and spy on victims, tying the attacks to a North Korean hacking group. (Photo by Kevin Carter/Getty Images)
What quishing is and why it works
Quishing is short for QR code phishing. Instead of clicking a suspicious link in an email, the victim scans a QR code that hides the real destination. QR codes themselves are harmless. The danger lies in the link embedded inside them. Once scanned, the link can redirect users to fake login pages, malware downloads or tracking sites. Because QR codes feel familiar and fast, many people scan them without thinking twice. That split second of trust is exactly what attackers rely on.
Who is behind the attacks
The FBI says the activity is tied to a hacking group known as Kimsuky. The group has operated for years as a cyber espionage arm for North Korea. What is new is the delivery method. According to the FBI, the QR code-based attacks began in May 2025. In one example, attackers posed as a foreign policy advisor and emailed a think tank leader with a QR code that linked to a fake questionnaire. Scanning the code sent the victim to a malicious site designed to harvest information.
What happens after you scan the QR code
Once a victim lands on one of these sites, several things can happen. Some pages prompt users to download files that contain malware. Others mimic mobile login portals for popular services such as Okta, Microsoft 365 or VPN services. Even if no form is filled out, the site can still collect device details. That includes IP address, operating system, browser type and approximate location. Over time, that data helps attackers build intelligence profiles on their targets.
Why QR code phishing attacks are highly targeted
The FBI describes these campaigns as spear phishing rather than mass spam. That means the emails are crafted for specific individuals. The language context and sender details are tailored to look relevant and credible. When an email feels personal, people are more likely to trust it. That is why these attacks are especially dangerous for professionals, researchers, executives and anyone working in policy or technology.
Why QR code phishing threats are growing
QR codes are everywhere now. Restaurants, parking meters, event tickets and ads all rely on them. As their use grows, so does the opportunity for abuse. Attackers know people are conditioned to scan without hesitation. That makes caution more important than ever.
Ways to stay safe from QR code phishing
The FBI says one of the best defenses against quishing is slowing down. QR codes remove the visual clues people rely on, so a few extra checks can make a big difference.
1) Be cautious with unexpected QR codes
Treat QR codes like links in emails. If you did not expect it, do not scan it. QR codes sent by email, text or messaging apps are a common entry point for quishing attacks. Criminals rely on curiosity and urgency to push you into scanning without thinking.
2) Verify the source before scanning
Always confirm who sent the QR code. If a message claims to come from a coworker, vendor or organization, reach out through a separate channel before scanning. A quick call or direct message can stop a phishing attempt cold.
JANUARY SCAMS SURGE: WHY FRAUD SPIKES AT THE START OF THE YEAR
Federal investigators say hackers are using “quishing,” or QR code phishing, to lure victims to malicious websites that steal credentials and device data. (Jens Schlueter/Getty Images)
3) Never enter logins after scanning a QR code
QR code phishing often leads to fake mobile login pages. Attackers mimic sign-in screens for email, VPNs and cloud services to steal usernames and passwords. If a QR code takes you to a login page, close it and visit the site manually instead.
4) Inspect the website URL carefully
Once a QR code opens a page, check the address bar. Look for misspellings, extra words or unfamiliar domain endings. A strange URL is often the only warning sign that the site is malicious.
5) Use strong antivirus software for QR-based threats
Strong antivirus software adds an extra layer of protection against quishing. Security tools can block known phishing sites, stop malicious downloads and warn you before harmful pages load. This is especially important on mobile devices, where QR codes are most often scanned.
The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe.
Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android and iOS devices at Cyberguy.com.
6) Use a data removal service to limit exposure
Some quishing sites collect device and location data even if you do nothing. A data removal service helps reduce how much personal information is publicly available online. That makes it harder for attackers to target you with convincing spear phishing emails that include QR codes.
While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.
Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com.
Get a free scan to find out if your personal information is already out on the web: Cyberguy.com.
7) Avoid QR code downloads entirely
Do not download files from QR code links unless you are absolutely certain they are safe. Malware delivered through QR codes can quietly install spyware or remote access tools without obvious warning signs.
INSTAGRAM PASSWORD RESET SURGE: PROTECT YOUR ACCOUNT
A North Korea-linked cyber group is targeting U.S. professionals by embedding harmful links inside seemingly harmless QR codes, according to the FBI. (Jaap Arriens/NurPhoto via Getty Images)
Kurt’s key takeaways
QR codes are convenient, but convenience can lower defenses. As this FBI warning shows, attackers are evolving and using familiar tools in dangerous ways. A moment of verification can prevent weeks or months of damage.
When was the last time you stopped to question a QR code before scanning it? Let us know by writing to us at Cyberguy.com.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Copyright 2026 CyberGuy.com. All rights reserved.
Valentine’s Day is coming up fast, and if you haven’t started shopping yet, there are a lot of great gifts on sale that should still arrive in time if you order soon. Several Verge-approved gadgets are seeing some of their best discounts since the holidays, with options we think will appeal to a wide range of interests, from thoughtful picks like digital photo frames to e-readers, smart speakers, smartwatches, massagers, and even practical stuff like vacuums. While some are bigger-ticket items, quite a few cost under $100, so there’s something here for a range of budgets, too.
Below, we’ve rounded up the best Valentine’s Day gift deals you can shop right now across a range of categories and prices, whether you’re buying for a partner, a friend, or yourself.
NEWYou can now listen to Fox News articles!
Welcome to Fox News’ Artificial Intelligence newsletter with the latest AI technology advancements.
IN TODAY’S NEWSLETTER:
– Palantir’s Shyam Sankar: Americans are ‘being lied to’ about AI job displacement fears
– OPINION: Elon Musk says you can skip retirement savings in the age of AI. Not so fast
– Chevron CEO details strategy to shield consumers from soaring AI power costs
LIES EXPOSED: “The American people are being lied to about AI,” Palantir CTO Shyam Sankar warns in the opening line of his new Fox News op-ed. And one of the biggest lies, he said, is that artificial intelligence is coming for Americans’ jobs.
Shyam Sankar, chief technology officer of Palantir Technologies Inc., speaks during the Hill & Valley forum at the U.S. Capitol in Washington, D.C., on Wednesday, April 30, 2025. (Getty Images)
RISKY RETIREMENT: Billionaire Elon Musk recently told people not to worry about “squirreling” money away for retirement because advances in artificial intelligence would supposedly make savings irrelevant in the next 10 to 20 years.
OFF-THE-GRID: Chevron CEO Mike Wirth detailed the company’s strategy to harness U.S. natural resources to meet soaring artificial intelligence power demand — without passing the cost along to consumers.
The COL4 AI-ready data center is located on a seven-acre campus at the convergence point of long-haul fiber and regional carrier fiber networks on July 24, 2025, in Columbus, Ohio. (Eli Hiller/For The Washington Post via Getty Images)
POWER CRISIS NOW: Artificial Intelligence and data centers have been blamed for rising electricity costs across the U.S. In December 2025, American consumers paid 42% more to power their homes than ten years ago.
LATEST POLLING: As the emphasis on implementing artificial intelligence across society grows, voters think the use of AI technology is happening too fast — and they have little confidence the federal government can regulate it properly.
PRIVACY NIGHTMARE: A popular mobile app called Chat & Ask AI has more than 50 million users across the Google Play Store and Apple App Store. Now, an independent security researcher says the app exposed hundreds of millions of private chatbot conversations online.
CAP-EX SURGE: Alphabet executives struck a confident tone on Wednesday’s post-earnings call, signaling that Google’s heavy investments in artificial intelligence are now translating into real revenue growth across the business.
Google Headquarters is seen in Mountain View, California, on May 15, 2023. (Tayfun Coskun/Anadolu Agency via Getty Images)
MERIT OVER FEAR: Shyam Sankar, the chief technology officer and executive vice president of Palantir Technologies, told Fox News Digital that artificial intelligence will be a “massively meritocratic force” within the workplace and offered advice to corporate leaders on how to best position their companies and employees for success.
FAKE LOVE HEIST: A woman named Abigail believed she was in a romantic relationship with a famous actor. The messages felt real. The voice sounded right. The video looked authentic. And the love felt personal. By the time her family realized what was happening, more than $81,000 was gone — and so was the paid-off home she planned to retire in.
FOLLOW FOX NEWS ON SOCIAL MEDIA
Facebook
Instagram
YouTube
X
LinkedIn
SIGN UP FOR OUR OTHER NEWSLETTERS
Fox News First
Fox News Opinion
Fox News Lifestyle
Fox News Health
DOWNLOAD OUR APPS
Fox News
Fox Business
Fox Weather
Fox Sports
Tubi
WATCH FOX NEWS ONLINE
Fox News Go
STREAM FOX NATION
Fox Nation
Stay up to date on the latest AI technology advancements, and learn about the challenges and opportunities AI presents now and for the future with Fox News here.
After introducing AirDrop support to Pixel 10 devices last year, Google is now set to expand it to phones made by other Android partners. Eric Kay, vice president of engineering for Android, confirmed in a press briefing attended by Android Authority that “a lot more” Android devices will be able to use Quick Share to initiate AirDrop sessions with Apple devices this year.
“We spent a lot of time and energy to make sure that we could build something that was compatible not only with iPhone but iPads and MacBooks,” Kay said. “Now that we’ve proven it out, we’re working with our partners to expand it into the rest of the ecosystem, and you should see some exciting announcements coming very soon.”
Currently, Google’s Pixel 10 phones are the only Android devices that can use Quick Share — Android’s own wireless peer-to-peer transfer feature, previously known as Nearby Share — to communicate directly with Apple’s AirDrop. Google hasn’t outlined any specific Android partners or devices for the update yet, but both Nothing and chipmaker Qualcomm teased in November that support was coming.
Kay also discussed Google’s efforts to improve the process for iOS users who switch to Android, helping to prevent incomplete data transfers, lost messages, and other issues. Apple has been working on a “user-friendly” way of transferring data from iPhones to other devices since early 2024, and Google and Apple’s collaborative efforts were seen being tested in Android Canary 2512 for Pixel devices in December.
“We’re also going to be working to make it easy for people who do decide to switch to transfer their data and make sure they’ve got everything they had from their old phone,” Kay said during the same briefing. “So there’s a lot more going on with that.”
Noblesville man extradited from Egypt to Indiana after FBI arrest
Naturalization ceremony at Iowa Capitol welcomes 40 new citizens
Kansas City taco shop named best Mexican restaurant in Kansas
Otega Oweh has struggled to get rolling against Tennessee
Unemployment claims in Louisiana declined last week
Florida High School Football Rankings: Top 25 teams – Oct. 21
Cleary's 21 help Le Moyne down Central Connecticut State 69-64 in OT
How old is Bo Nix? What to know about Oregon quarterback ahead of 2024 NFL Draft
99th annual Pony Swim held in Virginia
Indiana Members Credit Union announced as new anchor tenant at Bottleworks District
Fox News Campus Radicals Newsletter: Top teachers’ union under fire, anti-ICE agitator network exposed
‘Regime change in Iran should come from within,’ former Israel PM says
Virginia Democrats unveil a redistricting map that would aim to give them 4 more US House seats | CNN Politics
Hegseth says US strikes force some cartel leaders to halt drug operations
Senior Russian officer shot in Moscow in apparent assassination attempt
-
Indiana5 days ago13-year-old rider dies following incident at northwest Indiana BMX park
-
Massachusetts6 days agoTV star fisherman, crew all presumed dead after boat sinks off Massachusetts coast
-
Tennessee7 days agoUPDATE: Ohio woman charged in shooting death of West TN deputy
-
Indiana5 days ago13-year-old boy dies in BMX accident, officials, Steel Wheels BMX says
-
Politics1 week agoVirginia Democrats seek dozens of new tax hikes, including on dog walking and dry cleaning
-
Politics3 days agoTrump unveils new rendering of sprawling White House ballroom project
-
Austin, TX1 week ago
TEA is on board with almost all of Austin ISD’s turnaround plans
-
Texas6 days agoLive results: Texas state Senate runoff
