Phishing

WeChat warns of a new online shopping scam where buyers receive incorrect items. Scammers provide QR codes for “customer service,” leading to phishing attempts. Victims are lured into downloading apps and transferring funds through promises of compensation or task rewards. WeChat advises using official platform customer service for after-sales issues and cautions against trusting excessive compensation offers or prepayment requests.

SquareX warns of a new “Browser in the Middle” phishing technique using fake fullscreen login pop-ups to steal credentials. Exploiting browser vulnerabilities in Chrome, Edge, and Safari, attackers create convincing illusions. Safari is at highest risk due to a lack of visual warnings during the transition to fullscreen mode.