Retail Technology
| Log in | Subscribe
Subscribe | Log in
Retail Technology
Subscribe

It was just a matter of time before mobile marketing tool is subverted, say web security experts

It was just a matter of time before mobile marketing tool is subverted, say web security experts

 

Websense has started spotting spam emails leading to URLs that use embedded Quick Response (QR) codes.

 

QR codes are a two-dimensional matrix barcode, when scanned by a camera phone, will link users directly to the mobile web such as social media, video and web pages.

 

The San Diego-based company specialising in web security gateway software this week said it believes this new spam sting was just a matter of time in coming. It also suggested the discovery marks a clear movement and evolution of traditional spammers towards targeting mobile technology.

 

Recently the Websense Security Labs predictions for 2012 suggested that mobile threats were going to be big this year. It said QR codes could be the next step in mobile malware propagation, with QR codes having turned the heat up a notch as an “ultimate URL obfuscator”.

 

Subverting legitimate QR code creator

 

The spam email messages it identified look like traditional pharmaceutical spam emails and contain a link to the website 2tag.nl, which is a legitimate web service that allows users to create QR codes for URLs.

 

Once the 2tag.nl URL from the mail message is loaded in the browser, a QR code is displayed, along with the full URL that the QR code resolves to on the right. When a QR reader reads the QR code, it automatically loads the spam URL (or asks before loading, depending on which QR reader has been installed).

 

Elad Sharf, Websense Security Labs security researcher, said: “We’ve been looking at QR codes as a potential malware/spam route for a while now. Inherent in the design is a level of trust and novelty that can be abused. In many ways it was just a matter of time before we saw spam messages point to URLs that use embedded QR codes.

 

“This is a clear movement and evolution of traditional spammers towards targeting mobile technology. Last year we predicted a 2012 shift towards mobile device attacks. One week in to the new year and that prediction is evident.”