On Tue, 2 Feb 2021 10:47:49 +0100 Valentijn Sessink wrote:
> On-list: the only thing in the last QR-code phishing mail I received > that actually makes it a phishing mail is the following part: > > <img alt=3D"QR Code - Bevestigen aanvraag" style= > =3D"display:block;border:0;outline:none;text-decoration:none;-ms-interpolat= > ion-mode:bicubic" title=3D"QR Code - Bevestigen aanvraag" > src=3D"https://pr= > oxy.duckduckgo.com/iu/?u=3Dhttps://chenoneproduction.s3.ap-southeast-1.amaz= > onaws.com/static/a0fd.png" width=3D"184"> So the QR code is remote. If you fetch it could look like the recipient read the email, encouraging more spam to that account.
