I'm currently managing an environment that heavily utilizes Microsoft 365 and Exchange Online. I've set up Mimecast to block emails with QR codes due to the risk of malicious sites, but I'm finding it difficult because some emails still get through with zero-day exploits. I've noticed that a lot of email signatures include QR codes, and I really think these are unnecessary since email clients can already link directly to websites. I'm considering how to manage this since many of my users want to see images in emails, but Mimecast doesn't seem to allow me to strip QR code images while letting the rest of the email content come through. Is there any way to specifically block QR code images without fully blocking the email? I believe this could help resolve several security concerns.
2 Answers
I get your frustration about QR codes in emails. Some people use them for things like vCards, but for the most part, they do seem unnecessary when a simple link will do the job. Unfortunately, while Mimecast can help, it doesn’t natively strip out images like QR codes without affecting the rest of the email content, which complicates things. You might consider settings that block images from unknown senders, but that could annoy your users. You’re right; they should prefer clickable links anyway.
Blocking QR codes in emails without blocking everything else is tricky! You could try setting up rules to filter messages that contain QR codes specifically, but that might require some upkeep. In terms of security, your current approach with Mimecast is good, and relying on link rewrites gives you some peace of mind, but it’s frustrating the QR code can’t be filtered out directly.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures