Microsoft Reports Sharp Increase in Phishing via QR Codes in Early 2026

• May 2, 2026

Microsoft’s security teams have observed a significant rise in phishing attacks that leverage QR codes, known as “quishing,” during the first quarter of 2026. Their analysis revealed a 146% increase in this type of attack compared to previous periods.

Growth in QR Code Phishing and Related Threats

This surge in quishing incidents was uncovered as part of Microsoft’s examination of 8.3 billion phishing emails detected by its defenses over the first quarter. The findings highlight the growing exploitation of QR codes by malicious actors seeking to deceive users into compromising sensitive information.

Besides the spike in QR code-based phishing, Microsoft also noted a rise in attempts to breach corporate email accounts, known as Business Email Compromise (BEC). Attackers continue to refine their methods, including deploying phishing emails embedded with links and attachments aimed at stealing credentials.

Another concerning trend identified involves adversaries trying to circumvent security detection by using pages with CAPTCHAs, thereby evading automated protective tools. These evolving strategies show how threat actors adapt to defenses to maintain effectiveness.

With QR codes becoming increasingly common for accessing websites, promotions, and payments, the elevated use of this vector for phishing underscores the need for heightened caution. Users are advised to be vigilant when encountering unfamiliar QR codes, as they can redirect to malicious sites designed to harvest login data and personal information.

Microsoft’s data paints a broader picture of the complex and changing landscape of cyber threats targeting email and web interactions. Organizations and individuals alike must employ robust security practices and remain alert to these sophisticated phishing tactics.

Phishing attacks exploiting QR codes surged 146% in Q1 2026, according to Microsoft’s security analysis.