Implementation of an intelligent antimalware system for the detection of malicious links in QR codes
Descripción del Articulo
The increasing use of QR codes across various sectors has facilitated the transfer of information but has also exposed users to new cybersecurity threats, such as quishing, a variant of phishing that leverages these codes to redirect users to malicious websites. To address this issue, the study aime...
| Autores: | , , , |
|---|---|
| Formato: | artículo |
| Fecha de Publicación: | 2024 |
| Institución: | Universidad Privada de Tacna |
| Repositorio: | Revistas - Universidad Privada de Tacna |
| Lenguaje: | español |
| OAI Identifier: | oai:revistas.upt.edu.pe:article/1078 |
| Enlace del recurso: | https://revistas.upt.edu.pe/ojs/index.php/ingenieria/article/view/1078 |
| Nivel de acceso: | acceso abierto |
| Materia: | amenazas informáticas Aprendizaje automático ciberseguridad cyber threats Machine Learning Cybersecurity |
| Sumario: | The increasing use of QR codes across various sectors has facilitated the transfer of information but has also exposed users to new cybersecurity threats, such as quishing, a variant of phishing that leverages these codes to redirect users to malicious websites. To address this issue, the study aimed to implement an antimalware system that employs machine learning alongside the VirusTotal API to analyze and classify links embedded in QR codes in real time. The methodology was structured into four stages: capturing and decoding QR codes using OpenCV, analyzing extracted URLs with the VirusTotal API, issuing preventive alerts based on the link classification, and evaluating system performance with a dataset of 100 QR codes (50 safe and 50 malicious). The results showed 100 % accuracy, 95 % sensitivity, and an average response time of 48.95 ms. No false positives were detected, and only a small number of false negatives were observed, although some codes were classified as uncertain due to insufficient information from VirusTotal. It is concluded that the system is a suitable and adaptable tool for preventing quishing attacks, with potential for implementation in mobile applications and payment systems, as well as possible expansions to other visual encoding technologies. |
|---|
Nota importante:
La información contenida en este registro es de entera responsabilidad de la institución que gestiona el repositorio institucional donde esta contenido este documento o set de datos. El CONCYTEC no se hace responsable por los contenidos (publicaciones y/o datos) accesibles a través del Repositorio Nacional Digital de Ciencia, Tecnología e Innovación de Acceso Abierto (ALICIA).
La información contenida en este registro es de entera responsabilidad de la institución que gestiona el repositorio institucional donde esta contenido este documento o set de datos. El CONCYTEC no se hace responsable por los contenidos (publicaciones y/o datos) accesibles a través del Repositorio Nacional Digital de Ciencia, Tecnología e Innovación de Acceso Abierto (ALICIA).
