Emerging Phishing Techniques: New Threats and Attack Vectors

Intezer research identifies four evolving phishing techniques used in 2025 that reliably bypass email and file-scanning defenses: (1) Base64-encoded, obfuscated JavaScript embedded in SVG images that redirects victims to credential-harvesting pages; (2) malicious URLs hidden inside PDF annotation objects; (3) OneDrive-hosted read-only documents that dynamically inject phishing URLs via JavaScript at runtime; and (4) MHT archives embedded in OpenXML (.docx) files delivering QR-code-based phishing (quishing). The report provides sample IOCs, analysis methodology, and highlights the need for deep, format-aware inspection and combined static/dynamic analysis to mitigate these threats.