Microsoft Warns of 8.3 Billion Phishing Attacks in Early 2026 Driven by QR Codes and Captcha

QR code phishing surges 146% as Microsoft detects and analyzes 8.3 billion phishing threats in Q1 2026 – attackers are changing tactics to bypass security

Microsoft has seen attackers changing tactics to get around security tools, and they keep adapting even when disrupted.

Attackers Abuse CAPTCHA and ClickFix Tactics to Boost Credential Theft Campaigns

Cybercriminals are no longer relying on simple email tricks alone. Across the first quarter of 2026, attackers have been sharpening their approach by using CAPTCHA pages and ClickFix techniques to supercharge credential theft operations at an alarming scale. During Q1 2026, Microsoft Threat Intelligence tracked approximately 8.3 billion email-based phishing threats between January and March, with credential phishing remaining the dominant goal t…

Microsoft warns of 8.3 billion phishing attacks in early 2026 driven by QR codes and captcha

Microsoft has warned about the detection of 8.3 billion attempted phishing attacks through email during the first quarter of this year, led by the use of QR codes and captcha, consolidating this technique as one of the entry doors most used by cybercriminals. This has been shared by the team of cybersecurity experts Microsoft Threat […]

Microsoft: QR code, CAPTCHA-gated phishing more than double in Q1 2026

The company detected about 8.3 billion email-based phishing threats between January and March.

Microsoft warns of surge in QR code phishing attacks

Microsoft sees QR code phishing surge 146% to 18.7 million attacks in March as Tycoon2FA disruption cuts volume and tactics shift.