QR codes are essentially images that can be scanned to display you desired information. They are unique in the sense that they usually look like pixels of white and black with three to four bigger squares on the corners, see the image shown below:
Depending on where it is placed or how it is used it may be stylized to make it appear more aesthetic.
When the QR code above is scanned with the camera of a phone that can read QR codes, it will either display text or give you a link to a website as one of the primary uses.
These QR codes have a multitude of uses such as but not limited to, providing a survey, access to a website, digital menus in restaurants, used for payment, etc.
Malicious QR Codes
Because of how easy it is to create, use, and deliver, malicious actors take advantage of this to create malicious QR codes that can lead you to fake or malicious sites to harvest personal information.
The codes can be provided over email, text, pictures, and even in person in order for them to be effective.
Malicious QR codes that are provided over email are called "quishing"
What Can You Do To Protect Yourself Against Malicious QR Codes?
- Never scan QR codes that have a lack of context. if it is posted in the middle of nowhere, over an email you receive from someone you don't know, or it doesn't have a description as to what it is or where it leads to
- Most QR codes if scanned would preview you the site it leads to before it redirects you to it, verify the site is legitimate before clicking
- report it to Information Security if you are unsure. Information Security has the tools to safely verify if the QR code is malicious.
For more information please see the site below:
https://www.malwarebytes.com/cybersecurity/basics/what-is-a-qr-code
_________________________________________________________
12/21/2023
Email that went out to campus alerting users of QR codes:
Good Afternoon SUNY Cobleskill,
Information Security is getting an influx of reported suspicious emails that contain QR codes. Due to the sophisticated nature of these phishing emails, our current email detection technology is not capable of detecting and blocking QR codes.
Information Security is urging everyone to remain vigilant towards emails that contain QR codes as it is a key indicator that the email could be suspicious.
If you receive an email containing a QR code, please keep the following points in mind:
- Who is the sender? Check that the display name matches the sender email address.
- What is the email asking? Is the email asking you to urgently access the QR Code? Is there a time limit before the QR code expires? Expression of urgency is a key indicator that the email could be suspicious.
- What is the context behind the email? Did you receive this email “out of the blue”? have you corresponded with this sender before?
- Verify who the sender is. If the sender says “Andy Falcon” confirm this is actually coming from said sender, contact them outside of email correspondence, and confirm if the email is actually coming from “Andy Falcon”
If you receive an email that has a QR code and you are concerned about the authenticity of the email or would like Information Security to analyze the email for you please do not hesitate to contact the service desk at 518-255-5800
________________________________________________________________