QR codes are two-dimensional matrix barcode that can be scanned by smartphones that link users directly to a website without having to type in its address. By using QR codes (rather than links) as a jump-off point to dodgy sites, cybercrooks can disguise the ultimate destination of links.
QR(Quick Response,快速反应)码是二维的条形码,可被智能手机扫描、便于用户直接访问某个网站而无需键入网址。以二维条码而不用网址来作为导向恶意网站的跳板,骗子能隐藏最终目的链接。
Warren Sealey, director enterprise learning and knowledge management, Symantec Hosted Services explained: "we've seen criminals using bad QR codes in busy places putting them on stickers and putting them over genuine ones in airports and city centres."
赛门铁克公司托管服务部门企业学习和知识管理负责人Warren Sealey解释说:“我们已经见到罪犯在繁忙地点黏贴恶意二维码、在机场及市中心以恶意条码覆盖原有条码”。
Sealey, made his comments at the Ovum Banking Technology Forum 2012 in London on Wednesday.
上述意见是Sealey在周三伦敦“2012年Ovum银行技术论坛”上发表的。
Sian John, UK security strategist at Symantec, said: “There has been an explosion in the number of QR codes over the last couple of years, and cybercriminals are taking full advantage. Because QR codes just look like pictures it’s extremely difficult to tell if they’re genuine or malicious, making it easy to dupe passers-by into scanning codes that may lead to an infected site, or perhaps a phishing site.
赛门铁克公司英国安全策略师Sian John说:“近几年来,二维条码数量井喷,电脑罪犯也在因势利导。由于二维码呈图形状善恶难辨,故路人容易中招:扫描恶意条码、可能被导向中毒的网站或钓鱼网站”。
|
