JC

Art of Phishing | QR codes

 

You have clicked on a generated QR code.  While QR codes have been around since the early 1990's, it wasn't until the COVID Pandemic of 2020 that they became common.  Every time you scan a QR code you are inputting data into your device, typically through a web browser.  While QR codes are generally safe, they can be manipulated by cyber criminals to gain access to your device.  A malicious QR code may lead you to a spoofed website designed to deploy malware or collect sensitive data such as your login credentials, credit card data, or money.

To the human eye, QR codes all look the same, so spotting a safe QR code is difficult.  Your best bet is to always type in the URL manually you are looking to visit, but when you have to scan a QR code, look at the link which is typically displayed in your QR code Scanning App.  Many QR codes utilize shortened URLs to save space and cyber criminals use the same.

Some important tips:

  • Never scan an unknown QR code - yes, like the one that may have lead you here.
  • Look for QR code tampering - cyber criminals will often place new stickers over top of a legitimate QR code.
  • Avoid emotional scanning - cyber criminals want the only way you can solve your issue is to scan the QR code.
  • Only use reputable QR code scanners like the built in photo app on Apple IOS or Android.
  • Install Anti-Malware for Android or IOS to safeguard your mobile device.

 

QR code Security Risks

QRLjacking 
QRJacking, short for Quick Response Code Login Jacking, is a type of attack where threat actors hijack a user session in order to manipulate all applications that use the “Login with QR code” feature into using the attacker’s QR code instead of the authentic one.

Quishing 
Quishing, short for QR code phishing, is the process of using a QR code for a phishing attack. Threat actors may use a QR code to direct a user to a malicious website, like in this 3D secure update scam.

Baiting 
Baiting is a type of social engineering attack where threat actors use bait to deceive their targets. In a QR code baiting attack, attackers can leave random malicious QR codes in public spaces to entice people into scanning them.

Cloning 
Can QR codes be cloned? Yes, they can. Some threat actors clone legitimate QR codes to send users to phishing websites that capture sensitive information.

Scanner apps 
While QR and barcode scanner apps are usually safe, some can be risky. For example, abarcode scanner app on Google Play infected 10 million users with one update in late 2020.

Malware 
Attackers may link a QR code to a malicious website that uses drive-by downloads or malvertising to infect computers and devices with malware. Trojan password-stealers or keyloggers can help attackers commit identity theft or other crimes.

Recent Posts

Cybersecurity and data security impacts each and every one of us.  It is our responsibility to do what we can to protect both our own data but also those who have trusted you with access to their data.

Current Ventures

Contact Info

717.884.9030

Scott@ScottRDavis.com

Connect With Scott

 

© 2023 Scott R Davis, All Rights Reserved