Weaponizing Fear: Iran Conflict-Themed Phishing Uses Fake Emergency Alerts

This Cofense report details a mass phishing campaign that impersonates a Ministry of Interior emergency alert tied to regional conflict, leveraging urgency and QR codes to redirect recipients to a Microsoft-themed phishing page that harvests credentials; the blog includes observed infection and payload URLs and associated IP addresses and analyzes the social-engineering techniques used.