Emsisoft Blog: Are cybercriminals really using fake QR codes to steal your financial information?

Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,278
In January 2022, the FBI issued a public service announcement warning people of a new trend: cybercriminals are allegedly taking advantage of Quick Response (QR) codes to redirect victims to malicious sites that can steal their credentials and financial information. Additionally, the FBI warned that QR codes may contain malware.

It sounds quite troubling at first glance, particularly with so many businesses now using QR codes to provide contactless services during the pandemic. Even Jen Easterly, the Director of the US Cybersecurity and Critical Infrastructure Agency, has a QR code on her business card – or so she perhaps jokingly claimed in a tweet.

But how concerned should you really be about QR codes as an attack vector?

In this blog post, we take a look at how fake QR code attacks work and whether it’s ever safe to scan them.
Click to expand...
...
While QR codes may be low-risk, that doesn’t mean they’re no-risk and makes sense to keep this in mind. If you’re using a QR code to call up a restaurant’s menu or in the privacy of your own home to connect your TV to your Netflix account, you really don’t need to worry at all. Scan away! If, however, you’re using a QR code to launch a site into which you’ll be entering your personal or financial information, then it makes sense be a little bit cautious – especially if the QR code is in a public location and could have been tampered with. In such cases, it may make sense to manually launch the URL for the site you’re wanting to visit instead.
Click to expand...
Read the full blog post here:
blog.emsisoft.com

Are cybercriminals really using fake QR codes to steal your financial information?

The FBI recently released a PSA to raise awareness of malicious QR codes. But how concerned should you really be about fake QR code attacks?
blog.emsisoft.com blog.emsisoft.com
 
  • Like
  • +Reputation
Reactions: brambedkar59, upnorth, Nevi and 10 others
show-Zi

show-Zi

Level 36
Verified
Top Poster
Well-known
Jan 28, 2018
2,464
□Forecast□
Under the slogan "QR codes are dangerous," security software with suspicious QR codes begins to circulate.:unsure::coffee:

you should keep in mind that there is a small risk and exercise caution when appropriate.(Excerpt from the Emisi blog)
I think that's the whole basis of security.:)
 
  • Like
Reactions: SeriousHoax, upnorth, Nevi and 4 others
upnorth

upnorth

Level 68
Verified
Top Poster
Malware Hunter
Well-known
Jul 27, 2015
5,458
show-Zi said:
"QR codes are dangerous," security software with suspicious QR codes begins to circulate.:unsure::coffee:

you should keep in mind that there is a small risk and exercise caution when appropriate.(Excerpt from the Emisi blog)
I think that's the whole basis of security.:)
Click to expand...
2022-03-22-11-37-21.jpg

Never use a QR app or built-in feature that automatic opens the link. The shared example here is a staff approved safe one. Enjoy! :p
 
  • Like
  • HaHa
  • Applause
Reactions: Minimalist, KevinYu0504, show-Zi and 2 others
show-Zi

show-Zi

Level 36
Verified
Top Poster
Well-known
Jan 28, 2018
2,464
upnorth said:
Never use a QR app or built-in feature that automatic opens the link. The shared example here is a staff approved safe one. Enjoy! :p
Click to expand...
I checked various QR code specifications, but I thought that handling with a smartphone might be more dangerous than with a PC. The younger generation may undoubtedly be directed to dangerous sites.

Thanks for the Quick-Return music to the 1980s!
QR_950424.png
 
  • Like
Reactions: Gandalf_The_Grey

Similar threads

Gandalf_The_Grey
    • Like
Security News Microsoft Sway abused in massive QR code phishing campaign
Replies
0
Views
1,313
Security News
Gandalf_The_Grey
Gandalf_The_Grey
vtqhtr413
    • Like
    • +Reputation
Security News Threat actors use Tycoon 2FA kits to target MS 365 and Gmail accounts
Replies
3
Views
1,369
Security News
vtqhtr413
vtqhtr413
lokamoka820
    • Like
    • Wow
Scams & Phishing News Scammers Are Using Fake Windows Updates to Steal Your Files
Replies
0
Views
1,935
Security News
lokamoka820
lokamoka820

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top