SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Thursday, January 8th, 2026: HTML QR Code Phishing; n8n vulnerability; Powerbank Feature Creep
5 snips
Jan 8, 2026 Phishing schemes are getting crafty with QR codes embedded in HTML tables to dodge filters. Attention turns to serious vulnerabilities in n8n software, urging updates for users. The discussion highlights the concerning trend of power banks packed with unnecessary features, heightening security risks. Amidst tech tales, a production hiccup offers a fun chance for listeners to win stickers by reporting bugs. Tune in for valuable insights and cybersecurity tips!
AI Snips
Chapters
Transcript
Episode notes
HTML Table QR Code Phishing
- Johannes Ulrich described a phishing campaign that encoded QR codes as HTML tables to bypass filters.
- He noted QR codes remain readable despite distortion and asked defenders to share phishing samples with SANS.
Data And Code Blur In n8n
- Johannes Ulrich explained n8n ingests data and performs actions, blurring the line between data and executable prompts.
- That ambiguity makes sandboxing hard and can lead to code execution vulnerabilities depending on configuration.
Update n8n Deployments Now
- If you run n8n on-premises, update it immediately to receive security fixes.
- If you use the cloud version, confirm the provider applied the patches for you.