The best use of QR codes

marcos@lemmy.world

Wait until somebody actually makes brain implants!

But on the other hand, people have actively used memetic hazards for millennia. Want to star a nice, cozy witch hunt?

kevincox@lemmy.ml

Strongly reminds me of Old MacDonald Had a Barcode, E-I-E-I CAR. Basically put a standard anti-virus test string into various sorts of barcode and see what breaks.

naeap@sopuli.xyz

I'm not sure a pseudo QR code on the truck gives off the right message

I actually would really like to know, what it says and would make myself punishable by that
But I think, it looks so inviting to scan it...

amputret@lemmy.dbzer0.com

Ah, the Basilisk Hack.

ataridump@lemmy.world

Wasn’t this almost the plot line of Snowcrash?

easternlettuce@lemm.ee

Name one released in the last five years that doesn’t

jolteon@lemmy.zip

I can't think of a single phone that automatically opens links that are in QR codes. The worst it would do is just show a link to malware, wish you would have to manually click in order to download the malware.

tacosanonymous@lemm.ee

Every smartphone I’ve had does but every one of them has also asked if I want to follow the link rather than just doing it.

astralpath@lemmy.ca

Is this theoretically possible?

granitem@lemmy.world

Getting closer to Snow Crash all the time.

driving_crooner@lemmy.eco.br

AIs need to read it, so it could be a way to inject prompts on AI models.

craigers@lemmy.world

Modern Day Medusa sounds like a cool band name

littlewonder@lemmy.world

Most do. It's the only reason they finally somewhat caught on after a rough start when users had to download an app in order to read the code.

bugkilla@lemmy.world

Well, yes. You could bury code or malicious data in an image, QR or otherwise, and leverage an exploit that during processing of the visual data within the camera subsystem or inter subsystem calls could hypothetically trigger an execution path that results in a different outcome than expected, all without user permission. There is a lot of sw and hw sec controls in play at internal system boundaries and it would be very very difficult to gain privilege enough to fist fuck a phone but not impossible.

With the outstanding level of FR, NFR and Sec testing that companies perform these days it is not likely to happen. It's not like they push out minimal viable products or something, right? /S

mixedunivers@discuss.tchncs.de

Idk I use a Pixel with
GrapheneOS Camera App

nobleshift@lemmy.world

Multiple stage, multiple QR codes RCE.

smeg@feddit.uk

This was a few years ago (so I hope there have been patches since then) but I watched a video which was trying to make an entire game within a QR code: they don't have to just be links, they can be binaries that some devices will immediately run without question!

themoonisacheese@sh.itjust.works

Quite the opposite. That video by mattkc (iirc) repeatedly and unequivocally says that to make this work, he made his pc save the binary and explicitly run it using a python script, because doing it natively would be fucking insane

bleistift2@sopuli.xyz

The way I see it there are two options:

1. You’re in a car and driving past that vehicle. If you don’t have your phone ready already, you won’t get it out in time and won’t be able to scan the code. You didn’t read the code and didn’t need to (because you weren’t rubbernecking).

2. You’re in a car with your phone already out (because you’re expecting a crash) or you’re a pedestrian who takes out their phone to film the crash site. You do read the code and you should see it, because you’re rubbernecking.

naeap@sopuli.xyz

I was more thinking about, not driving the car myself, but being driven as a passenger

Although it's obviously a safety issue, when people turn away their focus to checkout a crash - no discussion about that - I was more thinking about the ethical issue of gaffing at injured people