The article in the link below has a QR Code and you can test it.
The URL parser of the camera app has a problem here detecting the hostname in this URL
Imagine someone popping codes on posters on public transit, banks, shops, cafes, and so on, that pretend to lead to a legit website, but really go to password-collecting fake sites, or malicious pages that attempt to download and run malware.
This issue was reported to the Apple security team on December 23, 2017 and as of Monday remained unfixed.
https://www.theregister.co.uk/2018/03/27/apple_ios_camera_app_qr_codes
No comments:
Post a Comment