{"id":"https://openalex.org/W7153534111","doi":"https://doi.org/10.1145/3779657.3779681","title":"Simulating QR Code Scanner Phishing Attacks: Investigating Vulnerabilities in QR Scanning and Reading Mechanisms Leading to Cookie and Data Exposure in Organization Environment","display_name":"Simulating QR Code Scanner Phishing Attacks: Investigating Vulnerabilities in QR Scanning and Reading Mechanisms Leading to Cookie and Data Exposure in Organization Environment","publication_year":2025,"publication_date":"2025-10-24","ids":{"openalex":"https://openalex.org/W7153534111","doi":"https://doi.org/10.1145/3779657.3779681"},"language":null,"primary_location":{"id":"doi:10.1145/3779657.3779681","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3779657.3779681","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 7th World Symposium on Software Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3779657.3779681","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5027459129","display_name":"Eric Blancaflor","orcid":"https://orcid.org/0000-0002-7189-3040"},"institutions":[{"id":"https://openalex.org/I137967721","display_name":"Map\u00faa University","ror":"https://ror.org/040rd2b57","country_code":"PH","type":"facility","lineage":["https://openalex.org/I137967721"]}],"countries":["PH"],"is_corresponding":true,"raw_author_name":"Eric Blancaflor","raw_affiliation_strings":["Mapua University, School of Information Technology, Manila, Metro Manila, Philippines"],"affiliations":[{"raw_affiliation_string":"Mapua University, School of Information Technology, Manila, Metro Manila, Philippines","institution_ids":["https://openalex.org/I137967721"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5115904598","display_name":"Michelle M. Algabre","orcid":null},"institutions":[{"id":"https://openalex.org/I137967721","display_name":"Map\u00faa University","ror":"https://ror.org/040rd2b57","country_code":"PH","type":"facility","lineage":["https://openalex.org/I137967721"]}],"countries":["PH"],"is_corresponding":false,"raw_author_name":"Michelle Algabre","raw_affiliation_strings":["Mapua University, School of Information Technology, Manila, Metro Manila, Philippines"],"affiliations":[{"raw_affiliation_string":"Mapua University, School of Information Technology, Manila, Metro Manila, Philippines","institution_ids":["https://openalex.org/I137967721"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5133428383","display_name":"Clyde Justin Angeles","orcid":"https://orcid.org/0009-0004-0355-7848"},"institutions":[{"id":"https://openalex.org/I137967721","display_name":"Map\u00faa University","ror":"https://ror.org/040rd2b57","country_code":"PH","type":"facility","lineage":["https://openalex.org/I137967721"]}],"countries":["PH"],"is_corresponding":false,"raw_author_name":"Clyde Justin Angeles","raw_affiliation_strings":["Mapua University, School of Information Technology, Manila, Metro Manila, Philippines"],"affiliations":[{"raw_affiliation_string":"Mapua University, School of Information Technology, Manila, Metro Manila, Philippines","institution_ids":["https://openalex.org/I137967721"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5115947551","display_name":"Andrei E. Goc-ong","orcid":"https://orcid.org/0009-0000-2507-9972"},"institutions":[{"id":"https://openalex.org/I137967721","display_name":"Map\u00faa University","ror":"https://ror.org/040rd2b57","country_code":"PH","type":"facility","lineage":["https://openalex.org/I137967721"]}],"countries":["PH"],"is_corresponding":false,"raw_author_name":"Andrei Goc-Ong","raw_affiliation_strings":["Mapua University, School of Information Technology, Manila, Metro Manila, Philippines"],"affiliations":[{"raw_affiliation_string":"Mapua University, School of Information Technology, Manila, Metro Manila, Philippines","institution_ids":["https://openalex.org/I137967721"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5133436253","display_name":"Enrique Karl Liberato","orcid":"https://orcid.org/0009-0003-8714-2262"},"institutions":[{"id":"https://openalex.org/I137967721","display_name":"Map\u00faa University","ror":"https://ror.org/040rd2b57","country_code":"PH","type":"facility","lineage":["https://openalex.org/I137967721"]}],"countries":["PH"],"is_corresponding":false,"raw_author_name":"Enrique Karl Liberato","raw_affiliation_strings":["Mapua University, School of Information Technology, Manila, Metro Manila, Philippines"],"affiliations":[{"raw_affiliation_string":"Mapua University, School of Information Technology, Manila, Metro Manila, Philippines","institution_ids":["https://openalex.org/I137967721"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5133422847","display_name":"Lester Ladera","orcid":"https://orcid.org/0009-0000-6528-5631"},"institutions":[{"id":"https://openalex.org/I3129508770","display_name":"President Ramon Magsaysay State University","ror":"https://ror.org/0150mxn38","country_code":"PH","type":"education","lineage":["https://openalex.org/I3129508770"]}],"countries":["PH"],"is_corresponding":false,"raw_author_name":"Lester Ladera","raw_affiliation_strings":["Ramon Magsaysay Memorial Colleges, Marbel Inc., School of Information Technology, Kotabato, Mindanao, Philippines"],"affiliations":[{"raw_affiliation_string":"Ramon Magsaysay Memorial Colleges, Marbel Inc., School of Information Technology, Kotabato, Mindanao, Philippines","institution_ids":["https://openalex.org/I3129508770"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5067669917","display_name":"William P. Rey","orcid":"https://orcid.org/0000-0002-1345-2335"},"institutions":[{"id":"https://openalex.org/I137967721","display_name":"Map\u00faa University","ror":"https://ror.org/040rd2b57","country_code":"PH","type":"facility","lineage":["https://openalex.org/I137967721"]}],"countries":["PH"],"is_corresponding":false,"raw_author_name":"William Rey","raw_affiliation_strings":["Mapua University, School of Information Technology, Manila, Metro Manila, Philippines"],"affiliations":[{"raw_affiliation_string":"Mapua University, School of Information Technology, Manila, Metro Manila, Philippines","institution_ids":["https://openalex.org/I137967721"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5027459129"],"corresponding_institution_ids":["https://openalex.org/I137967721"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.87657017,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"157","last_page":"163"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T13270","display_name":"QR Code Applications and Technologies","score":0.35199999809265137,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T13270","display_name":"QR Code Applications and Technologies","score":0.35199999809265137,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.15199999511241913,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14435","display_name":"Information Retrieval and Data Mining","score":0.03240000084042549,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.8950999975204468},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.6399000287055969},{"id":"https://openalex.org/keywords/data-breach","display_name":"Data breach","score":0.4894999861717224},{"id":"https://openalex.org/keywords/reading","display_name":"Reading (process)","score":0.4869999885559082},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.40119999647140503},{"id":"https://openalex.org/keywords/safeguard","display_name":"Safeguard","score":0.3343999981880188},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.326200008392334}],"concepts":[{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.8950999975204468},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6590999960899353},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.6399000287055969},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6189000010490417},{"id":"https://openalex.org/C165609540","wikidata":"https://www.wikidata.org/wiki/Q1172486","display_name":"Data breach","level":2,"score":0.4894999861717224},{"id":"https://openalex.org/C554936623","wikidata":"https://www.wikidata.org/wiki/Q199657","display_name":"Reading (process)","level":2,"score":0.4869999885559082},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.41110000014305115},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.4052000045776367},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.40119999647140503},{"id":"https://openalex.org/C2780771206","wikidata":"https://www.wikidata.org/wiki/Q3271761","display_name":"Safeguard","level":2,"score":0.3343999981880188},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.326200008392334},{"id":"https://openalex.org/C75291252","wikidata":"https://www.wikidata.org/wiki/Q1315756","display_name":"TRACE (psycholinguistics)","level":2,"score":0.322299987077713},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.31209999322891235},{"id":"https://openalex.org/C2777615720","wikidata":"https://www.wikidata.org/wiki/Q11888847","display_name":"Prioritization","level":2,"score":0.3084999918937683},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.29280000925064087},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.28380000591278076},{"id":"https://openalex.org/C10511746","wikidata":"https://www.wikidata.org/wiki/Q899388","display_name":"Data security","level":3,"score":0.28119999170303345},{"id":"https://openalex.org/C2778652015","wikidata":"https://www.wikidata.org/wiki/Q7445019","display_name":"Security awareness","level":3,"score":0.2752000093460083},{"id":"https://openalex.org/C2779390178","wikidata":"https://www.wikidata.org/wiki/Q29137","display_name":"Cybercrime","level":3,"score":0.2711000144481659}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3779657.3779681","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3779657.3779681","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 7th World Symposium on Software Engineering","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3779657.3779681","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3779657.3779681","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 7th World Symposium on Software Engineering","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W1765876518","https://openalex.org/W2622662187","https://openalex.org/W2807211269","https://openalex.org/W3014556642","https://openalex.org/W3173026781","https://openalex.org/W4225160936","https://openalex.org/W4297659151","https://openalex.org/W4306941741","https://openalex.org/W4382998964","https://openalex.org/W4399421368","https://openalex.org/W4407278770","https://openalex.org/W6910623411"],"related_works":[],"abstract_inverted_index":{"This":[0,99],"study":[1,78],"examines":[2],"the":[3,38,77,80,92,113],"increasing":[4],"threat":[5],"of":[6,82,115],"QR":[7,14,42,65,96,117],"code":[8,97,118],"phishing":[9,56,119],"attacks,":[10,120],"where":[11],"cybercriminals":[12],"exploit":[13],"codes":[15,66],"to":[16,19,48,88,102],"redirect":[17],"users":[18,32,62],"fraudulent":[20],"websites":[21],"that":[22,60],"solicit":[23],"sensitive":[24],"information.":[25],"The":[26],"research":[27,100],"highlights":[28],"how":[29],"attackers":[30],"manipulate":[31],"into":[33],"providing":[34],"personal":[35],"data,":[36],"emphasizing":[37],"need":[39],"for":[40,111,127],"secure":[41,124],"scanning":[43],"tools":[44],"and":[45,85,107],"protective":[46],"measures":[47],"safeguard":[49],"data":[50],"during":[51],"transmission":[52],"through":[53],"simulating":[54],"a":[55,122],"scenario,":[57],"Findings":[58],"reveal":[59],"many":[61],"engage":[63],"with":[64,95],"without":[67],"proper":[68],"verification,":[69],"driven":[70],"by":[71],"trust":[72],"in":[73],"recognizable":[74],"branding.":[75],"Moreover,":[76],"stresses":[79],"importance":[81],"user":[83],"education":[84],"awareness":[86],"programs":[87],"help":[89],"individuals":[90],"recognize":[91],"risks":[93],"associated":[94],"phishing.":[98],"aims":[101],"enhance":[103],"organizational":[104],"security":[105],"posture":[106],"offer":[108],"actionable":[109],"recommendations":[110],"reducing":[112],"risk":[114],"successful":[116],"fostering":[121],"more":[123],"digital":[125],"environment":[126],"users.":[128]},"counts_by_year":[],"updated_date":"2026-04-12T06:10:36.643156","created_date":"2026-04-12T00:00:00"}