Exemplifying Emerging Phishing: QR-based Browser-in-The-Browser (BiTB) Attack

TL;DR

This paper introduces a novel QR-based Browser-in-The-Browser attack leveraging Large Language Models like Google Gemini, demonstrating its simplicity and potential threat, and emphasizing the need for defenses against such emerging phishing techniques.

Contribution

The paper presents the first demonstration of a QR-based BiTB attack using LLMs, combining two emerging attack vectors and analyzing its execution and implications.

Findings

Attack can be implemented with malicious prompts to Gemini-LLM

Case study shows lucrative attack potential

Experiment confirms attack feasibility on devices

Abstract

Lately, cybercriminals constantly formulate productive approaches to exploit individuals. This article exemplifies an innovative attack, namely QR-based Browser-in-The-Browser (BiTB), using proficiencies of Large Language Model (LLM) i.e. Google Gemini. The presented attack is a fusion of two emerging attacks: BiTB and Quishing (QR code phishing). Our study underscores attack's simplistic implementation utilizing malicious prompts provided to Gemini-LLM. Moreover, we presented a case study to highlight a lucrative attack method, we also performed an experiment to comprehend the attack execution on victims' device. The findings of this work obligate the researchers' contributions in confronting this type of phishing attempts through LLMs.