The latest advancements in phishing attacks are rendering current methods for detection inadequate. Quishing is a phishing attack where the attacker inserts a QR code instead of a link. This development means that the security analyst can’t simply search the text for suspicious links and needs a way to detect and decode QR codes for further analysis.

SafeQR is a tool to automate the processing of QR codes in email attachments, giving the security analyst the link it points to without lifting a finger. Netsecurity tasked us with developing this product to make their Security Operation Center even more efficient.

Our program can decode images, PDFs, Office files, and vector graphics. All QR data is added to an organized list in their analysis platform. The analyst also gets a warning message where the result may be doubtful to prevent false negatives.
Introducing SafeQR results in immense effectiveness and reduced processing time for phishing incidents. Security analysis enjoyed using SafeQR and want to add it as a tool for day-to-day work.