QR code hijack protection?

I'm using Microsoft Phone Link to access messages and notifications from my Android 11 phone. Recently I got a popup with a QR code that indicated that I should scan the code with my phone to restore the connection.

I ignored the message but it lead me to question whether Norton provides protection from QR hijacking.

I've changed my Internet provider's modem to use the Norton DNS so I suspect that there is a certain amount of protection there but was curious about localized protection for when my phone is not connected to the wifi at home.

WhatismyIPaddress shows the owners as NortonLifelock Inc.  As Richard is using them, they do seem to provide DNS services. But as I have not seen any information since the Norton ConnectSafe EOL, I would not trust those IP settings to provide any web filtering protection.

 

My concern would then be whether the addresses remain secure or whether they might be used for personal data collection or other intrusive purposes.

Is it possible that these addresses used to be Norton but were sold off to another company and still work for DNS?

Interesting that those DNS settings still work. Those settings were for the Norton ConnectSafe service which was discontinued in 2018. see this Norton support article.   https://support.norton.com/sp/en/ca/home/current/solutions/v53246991   When I get some time I will try them myself. 

 

I don't recall exactly when I made the DNS change but it was some time last year. I don't even recall where I found them but it was on the Norton site. The IP addresses I used for DNS are 199.85.126.10, 199.85.127.10.

A tracert to 199.85.126.10 shows the final 2 hops as

  9    34 ms    34 ms    35 ms  ultradns.p1-13-10g.fr3.iad.llnw.net [208.111.132.1]
 10    34 ms    34 ms    34 ms  199.85.126.10
 

Should I be concerned?

Curious on your use of Norton DNS in your router. Norton has not had a DNS service for many years now.

As for protecting you against malicious QR codes, the Internet Security feature in 360 Android would kick in when the QR opened your browser.