Litcius/Paper detail

Impact Analysis and Attack Simulation on Quishing (a QC Code Phishing) using QRLJacker

Eric Blancaflor, Mark Brandon Calida, MATTHEW CHAN, NICOLE LA YSICO, KEITH GOTEN BON SUP AN

202411 citationsDOI

Abstract

Quick response (QR) codes is a form of two-dimensional matrix barcode that can store information in a grid of black and white pixels which creates a unique pattern. The QR codes are usually scanned by mobile devices such as smartphones and will redirect the user's mobile devices to whatever URL the QR code contains. QR codes have grown in popularity due to their capabilities of redirecting to digital information or authenticating users [4]. This study implemented an explanatory research design. The study aims to describe, showcase, and investigate the different methods of quishing. To supplement the study, the researchers conducted a survey to better assess the knowledge of the peers around them. A survey was conducted to understand what the population thinks about QR codes and the underlying risks on its usage. The results of the QRJacking simulation were successful; the tool gained access to the target's Whatsapp. Outside of the success of the attack simulation, the research found that there were no restrictions when sending the Malicious QR code over messaging applications like Facebook Messenger, Discord, Whatsapp, and Viber. For future researchers, the researchers recommend using different apps, tools, and frameworks. Look into countermeasures and other methods of mitigation.

Topics & Concepts

PhishingComputer scienceCode (set theory)Computer securityWorld Wide WebProgramming languageThe InternetSet (abstract data type)Advanced Malware Detection TechniquesSpam and Phishing Detection
Impact Analysis and Attack Simulation on Quishing (a QC Code Phishing) using QRLJacker | Litcius