Service Update
| Availability | Globally available by September 18th, 2024 |
| Product(s) | Email Security Cloud Gateway (CG) |
| Who's affected | Administrators and End Users |
Overview
Mimecast is pleased to announce QR Code Scanning enhancements, which include a QR Code Image Action option in Attachment Management policy configuration.
What's changing
- When a phishing attack scenario is identified, Mimecast scans the URL associated with the QR Code, makes a determination in line with your URL Protection Policy and Definition settings, and rejects or holds the message if found to be a threat. Mimecast does not remove/strip the QR Code from the message.
Deployment Schedule
| Region | Date |
| AU | September 16, 2024 |
| DE/UK/ZA/Jersey | September 17, 2024 |
| US/USB/CA | September 17, 2024 |
Recommended actions
Mimecast's QR Code Scanning protects customers against malicious QR Codes within email attachments. Providing an active URL Protection policy is configured, this feature is available for Inbound, Outbound, and Internal. Mimecast can also scan and hold emails with any QR Code. Mimecast will scan the email body and attachments for the presence of a QR Code. This is done via Attachment Management and the following settings:
Considerations
Given that QR Codes are very prevalent, our new detection via Attachment Management will detect any QR Code within email bodies and email attachments. Please be aware this may result in a large number of holds for QR Codes. Therefore, Attachment Management bypasses or Attachment Management policies without QR Code detection are the easiest methods to bypass these holds for QR Codes.
We recommend configuring 90% Probability for the QR Code Image Setting to avoid False Positive Detections.
Comments
Please sign in to leave a comment.