QR code scan scams have surged in India, with approximately 21,000 cases reported in Bengaluru alone from 2017 to May 2023, says a report by Palo Alto Networks. The scams often see fraudsters replacing legitimate QR codes with their malicious counterparts and exploiting the inability of users to differentiate between the two visually. A QR scan scam either redirects users to a phishing website or installs malware on their device. It’s crucial for individuals to stay vigilant, particularly those who frequently use digital payments.
New GitHub Actions Attack Chain Uses Fake CI Updates to Exfiltrate Secrets and Tokens
A new attack campaign is actively targeting open-source repositories on GitHub by carefully disguising malicious code as completely routine CI build configuration updates. The campaign,
