Forum Discussion
lucanz73
Sep 28, 2023Copper Contributor
Is it possible to block emails containing QR CODE?
Is it possible to block emails containing QR CODE?
KarstenV59
Oct 13, 2023Brass Contributor
It must be possible to create a feature in the Microsoft Defender that via AI scannes the images imbedded in the incomming mails and actually follows the QR code with the malicious link in a sort of Sandbox, before it reaches the inbox?
- CountryPreacherOct 17, 2023Copper ContributorOther email security vendors are already doing this.
- KarstenV59Oct 18, 2023Brass ContributorYes and that is why i describe the situation as i have seen this being handled by other vendors already as you say.
- Oct 13, 2023
- Consider using config analyzer and preset security policies to ensure you always have the latest and greatest protection settings on for your organization.
- You should configure your mobile device policies to use Network Protection and Smart Screen supported browsers (such as Microsoft Edge) to extend protection to your mobile devices against the malicious URLs embedded in the QR Codes.
- We strongly recommend using multi-factor authentication and conditional access to help secure organizational accounts from credential theft.
- KarstenV59Oct 13, 2023Brass ContributorThank you for the reply, and yes we have all that in place, but still the "Quishing" mails are in some cases go through as they are designet with the intend to bypass those features/policies, as i tryed to mention, the mails are designed with an image imbedded in the body, that image is then a pigture of a QR code, this is just one way they can avoid detection by antiphishing, and i do not see any resolutions from MS side remidiate this.
- Oct 13, 2023here is a good reading for a security MVP colleague.
https://www.linkedin.com/posts/jeffrey-appel-nl_microsoftsecurity-aitm-activity-7112903449670754304-67ML/