QR Code Detection
Attackers are increasingly crafting emails that contain an image attachment of a malicious QR code. These malicious QR codes often link to what appears to be a legitimate website, such as Google or Microsoft login pages, and prompt recipients to enter their login credentials. If entered, attackers can steal those credentials and use them to compromise additional services or launch additional attacks.
Abnormal detects these attacks by analyzing behavioral signals to identify communication patterns commonly associated with this type of attack, and parses the QR code to determine if the associated link is suspicious. View the product tour to see how Abnormal stopped an anonymized real-world QR code attack.