Mimecast has improved its Quick Response (QR) code protections to include deep scanning of URLs tied to QR codes, and upon inspection, malicious content will be blocked.
Threat actors deliver emails with QR codes that point to fake sites in an effort to steal credentials or perform other malicious activities.
These attempts are difficult to detect as often people do not view QR codes as a danger, they have become commonplace for many legitimate uses such as restaurant menus, sign-up forms, and other useful online activities.
The enhancements directly address these issues by:
- Identifying QR codes in the body of an email and extract the URL for deep scanning.
- Enhancing ‘quishing’ protection to help employee inboxes stay safe, further enabling customer organizations to Work Protected.
“QR code attacks pose a serious and growing threat for organizations worldwide,” said Stanley Hsu, Regional VP of Asia. “At Mimecast, we will always innovate to meet our customers’ needs, and we are tackling this growing attack vector head-on to keep organizations secure.”
Deep scanning of QR code URLs is now live within Mimecast Email Security, and the company advises more enhancements to combat ‘quishing’ will follow.