FBI Warns North Korean Hackers Using QR Codes

The FBI warns QR codes are being weaponized by North Korean hackers in a new wave of spear-phishing campaigns targeting U.S.-based organizations. In an advisory issued Thursday, federal investigators said state-sponsored actors tied to North Korea have begun embedding malicious QR codes into phishing emails aimed at compromising systems at think tanks, academic institutions, and both U.S. and foreign government entities.

The emerging tactic allows attackers to bypass traditional email security filters by luring recipients into scanning the QR codes with mobile devices. Once scanned, users are redirected to attacker-controlled domains designed to steal credentials or deploy malware. The FBI attributed the activity to a known group identified as Kimsuky, which has a history of targeting policy and research institutions for espionage purposes.

The alert underscores growing threats from QR-based social engineering. The FBI warns QR codes will likely play a larger role in future cyber operations. Read the full advisory here:
https://thehackernews.com/2026/01/fbi-warns-north-korean-hackers-using.html