They came to a climate protest here with, no joke, maybe 3k paper fliers, I had to stop the guy being like "you printed thousands of pages with only a logo, a hashtag, and a qr code, you couldn't have just like... made one?".
I know it's inconsequential in the large picture, but dude also was like 40 and had pig-nearing-retirement vibes. Was my first exposure to them, and it was when they were first starting to blow up (conspicuously I might add) . Pretty sure my initial thought was accurate.
Somehow that very obvious attack vector hadn’t occurred to me…location specific QR codes that redirect you through a site that captures a browser fingerprint before redirecting to a “legit” looking site. From there super easy to keep tabs on browsing behavior of anyone who was at the protest.
They came to a climate protest here with, no joke, maybe 3k paper fliers, I had to stop the guy being like "you printed thousands of pages with only a logo, a hashtag, and a qr code, you couldn't have just like... made one?".
I know it's inconsequential in the large picture, but dude also was like 40 and had pig-nearing-retirement vibes. Was my first exposure to them, and it was when they were first starting to blow up (conspicuously I might add) . Pretty sure my initial thought was accurate.
i'm skeptical of anything involving a QR code that isn't explicitly a restaurant menu. It's probably data collection
Somehow that very obvious attack vector hadn’t occurred to me…location specific QR codes that redirect you through a site that captures a browser fingerprint before redirecting to a “legit” looking site. From there super easy to keep tabs on browsing behavior of anyone who was at the protest.
I’ll hover over one with my camera and it’ll say bit.ly or some shit and I nope right outta there