Check Point researchers warned Monday that tracking pixels, also called web beacons, tracking beacons, and web bugs, could be used to compromise enterprise security in phishing attacks.
Tracking pixels are image files like a Gif or PNG that send a string of code to an outside website that is generally used as a marketing tool used to measure several aspects of email and web advertising campaigns, according to an April 17 blog post.
The image is usually only one pixel in size to prevent the users from knowing they’re being tracked and can be set to the same color as the background to disguise itself from the user.
Although tracking pixels haven’t been found to be the direct cause of a breach, threat actors can use them to learn which email recipients are most likely to open email scams to increase their chances of successful phishing attacks.
Researchers warned users to look for any anomalous image placeholders in advertising emails before downloading pictures.