A vulnerability in the QR code reader built into the iOS camera app could allow users to be directed to a malicious website without their knowledge.
As of iOS 11, you can simply point your iPhone at a QR code using the standard camera app, and it will read and act on the code. In the case of an embedded website URL, iOS shows you the link address and asks you to tap to confirm you want to visit it. But you may not be visiting the link displayed …
more…