Advanced email and collaboration security company, Mimecast, has enhanced its Quick Response (QR) code protections to better serve current and future customers.
Mimecast Email Security is now engineered to include deep scanning of URLs tied to QR codes, and upon inspection, malicious content will be blocked.
In 2023, there was an uptick in QR code attacks, commonly referred to as ‘quishing’ and there are no signs the attack method will slow down in 2024, the company reports.
Threat actors deliver emails with QR codes that point to fake sites to steal credentials or perform other malicious activities.
These attempts are difficult to detect as often people do not view QR codes as a danger;they have become commonplace for many legitimate uses such as restaurant menus, sign-up forms and other useful online activities.
According to Mimecast’s Global Threat Intelligence Report, overall attacks with malicious links increased by 22% in Q3 of 2023 compared to Q2.
Mimecast threat intelligence, based on the processing of more than one billion emails per day on behalf of 42,000 global customers, found that inserting QR codes into the body of an email to deliver malicious links is a widely used tactic by cybercriminals and threat actors.
These new product enhancements directly address this issue, as Mimecast email security is designed to identify QR codes in the body of an email and extract the URL for deep scanning.
Enhanced ‘quishing’ protection will help employee inboxes stay safe, further enabling customer organisations to “Work Protected”.
“QR code attacks pose a serious and growing threat for organizations worldwide,” said Sean Brady, VP of Product Management.
“At Mimecast, we will always innovate to meet our customers’ needs and we are tackling this growing attack vector head-on to keep organisations secure.”