You've probably seen QR tags thousands of times, from advertisements in the subway to coupon
flyer in the mail to products in the supermarket. They look like
stamp-size bar codes, a grid of small black-and-white rectangles and
squares, usually with bigger black squares in the corners.
A marketer's dream-come-true, these tiny images are capable of storing and transmitting loads of data directly to the smartphones
of interested customers. When a person scans a QR tag with a
smartphone, the tag can do any number of things, including taking the
user right to the product's website.
But like any technology, they can also be manipulated to bite the hands — or phones — that feed them. On the mobile security blog Kaotico Neutral, researcher Augusto Pereyra demonstrated how these innocuous QR tags can be made into cybercrime weapons.