Security professionals specializing in cyberspace are cautioning the public regarding fraudulent schemes that employ QR codes to exploit individuals who are unaware of the risks.
What exactly constitutes a QR code?
QR codes, which stands for “quick response,” are those tiny barcodes you see everywhere. You can scan them with your phone’s camera to access things like restaurant menus, online payment platforms, or pretty much any other online function.
We all know these tools,” stated Jean-Paul Bergeaux, GuidePoint Security’s federal CTO. “The idea is, ‘How can we make accessing a link easier for people, so they don’t have to type it in, and thus simplify our lives?’ And it accomplishes that goal effectively.
How does ‘Quishing’ work?
Regrettably, similar to many other things, fraudsters are discovering methods to exploit QR codes in a scam called “Quishing.”
Bergeaux explained that the process involves simply scanning, striking, and proceeding, enabling travel to any location, which is appealing to criminals. He added that the attraction for them lies not only in its widespread availability but also in a degree of anonymity.
Bergeaux explained that the most frequent tactic scammers employ with QR codes is directing you to a fraudulent website designed to steal your personal data and funds.
Bergeaux warned that simply by scanning your phone, thieves can access and pilfer your data, information, and even your online accounts.
It happened in Baltimore
Imagine you’re attempting to park. A fraudulent QR code stuck to the meter might direct you to a website resembling a parking payment portal, but actually, a crook has just pilfered your credit card details.
This issue was brought to light in Baltimore earlier this year, whenBaltimore’s Parking Authority cautioned motorists against using QR codes displayed on parking meters..
What steps can I take to protect myself from QR code fraud?
You can take steps to stay safe. First, make sure the QR code hasn’t been altered or hidden by something like a sticker. Another option is to simply not use them at all.
Bergeaux suggested downloading the ParkMobile app, or whichever similar app you prefer, directly from the app store to avoid the risk of being directed to an undesirable location.
To protect your sensitive data, it’s wise to avoid using the same password across multiple accounts and to enable multi-factor authentication, especially for your primary accounts.
What do I do if I fell victim to a QR code scam?
If hackers do access your phone, don’t wait to act.
“The first thing is, what did they get? If they got an account, reset the account, retake control over that account, whatever that account is,” Bergeaux said.
Bergeaux warned that even if a QR code is made with good intentions, the websites used to create the QR codes can sometimes do so maliciously. So, if something seems off or doesn’t seem right, check with the company or organization before scanning a QR code or clicking any links.
READ MORE:QR code scams: How to avoid falling victim to ‘Quishing’
CHECK OUT WPTZ:Get the latest Plattsburgh and Burlington news of the day. See the stories making headlines, and get the latest weather report online, anytime.
