Threat prevention provider Perception Point has introduced new features in its email security offering to address the growing threat of QR code phishing, also known as “quishing.” The company’s Advanced Email Security now utilizes an image recognition model to detect and scan QR codes in real-time, preventing malicious campaigns from reaching users’ inboxes. By extracting links from QR codes and scanning them dynamically, Perception Point’s solution can identify and block phishing or malware delivery attempts.

QR code phishing involves fraudsters using seemingly legitimate QR codes in email campaigns to embed malicious URLs. These URLs lead unsuspecting users to compromised websites that either contain malware or are designed to harvest user credentials. To increase the success of quishing attacks, emails often impersonate well-known and trusted brands. What makes QR code phishing particularly dangerous is the shift of users from computer screens to mobile devices, where they are more likely to take immediate actions.

The surge in QR code phishing can be attributed in part to the re-emergence of QR codes during the COVID-19 pandemic. Cofense, a cybersecurity company, recently reported an increase in QR code phishing campaigns targeting Microsoft credentials across various industries. These campaigns involved spoofed Microsoft security notifications that contained PNG or PDF attachments, prompting users to scan a QR code to update or review their security settings. According to Cofense, the campaign has seen a monthly growth rate of over 270%, with an overall increase of more than 2,400% since May 2023. Notably, a major US-based energy company received over 1,000 emails containing malicious QR codes, accounting for approximately 29% of the attacks observed.

Perception Point’s new quishing prevention features include real-time image recognition, which extracts all QR codes from email bodies, images, and file attachments. An anti-evasion algorithm then scans the URLs embedded within the QR codes and breaks down their content to identify hidden malicious payloads. The solution also incorporates AI detection models, such as two-step phishing, GenAI Decoder, brand spoofing recognition, domain lookalike, and URL lexical analysis. Furthermore, Perception Point’s email security offering includes robust anti-malware detection, utilizing patented CPU-level technology to block attacks at the exploit phase before malware is released or executed.

Peleg Cabra, Senior Product Marketing Manager at Perception Point, emphasized the need for cybersecurity vendors to keep up with evolving tactics employed by threat actors. The rise of quishing highlights the ingenuity of cybercriminals, requiring proactive measures to stay ahead of the curve.

Cybersecurity teams must be aware of the risks associated with QR codes, as they can surprise unsuspecting users. QR codes have the ability to initiate various actions on a user’s device, such as opening a website, adding a contact, or composing an email. However, users often have no idea what will happen when they scan a code. While users can typically view a URL before clicking on it, this transparency is not always possible with QR codes, making them a potential avenue for exploitation.

In conclusion, the introduction of new features in Perception Point’s email security offering provides a proactive approach to combating the rise of QR code phishing. By leveraging image recognition and anti-malware detection, the solution aims to prevent malicious campaigns from reaching users’ inboxes. As QR codes continue to gain popularity, it is crucial for cybersecurity teams to be vigilant and implement effective measures to mitigate the risks associated with this form of phishing.

Source link