‘QR code’ warning from cyber security experts
Experts warned against QR codes that became widespread with the pandemic. ‘Think twice before scanning’ was said.
With the pandemic, the use of QR codes has become more common than ever before. This technology, whose origins date back to the 1990s, was of course used frequently before the pandemic. However, after the epidemic, all businesses, especially restaurants and markets, switched to QR codes to minimize physical contact with customers.
Now, almost every restaurant has a QR code instead of a menu booklet, and it is possible to order over the phone via this code. However, hackers, who took advantage of the ease of use and prevalence of QR codes, began to exploit this technology. Cyber security experts talked about the precautions to be taken against a possible fraud.
They can even steal your financial information with a QR code.
According to experts, the new favorite of hackers: QR codes . Angel Grant, Vice President of Security at security company F5, explained in his statement that whenever a new technology emerges, cybercriminals ask “how do we take advantage of it?” He said they were starting to think.
Stating that this is especially true in technologies such as QR code , which people know how to use but do not know how to work , Angel Grant said, “In such cases, it is much easier to manipulate unconscious people.”
According to the transmitted information, malicious QR codes cannot directly harm you. So when you scan with your phone, downloading malware etc. in the background. they cannot make transactions. However, they may redirect you to misleading websites. For example, the QR code you use to pay your debt to a business can open a website that asks for your bank information but is unrelated to that business.
“It is ridiculous to direct people to QR codes online”
Cyber threat analyst Brad Haas said that QR codes are moving people from the physical world to the online world . Pointing out that the use of QR codes in e-mails and internet advertisements has become widespread recently, Haas expressed that he finds this tactic ridiculous.
“There’s no reason anyone should scan a QR code with their phone in an email open on their laptop. Because, thanks to his laptop, that person is already online. Why would it need to connect to a second device?” Brad Haas said, therefore, e-mails containing QR codes should be approached with suspicion.
Important warnings from experts
Think before you scan: Be especially wary of codes posted in public places. Check. If possible, request a hard copy of the document you’re trying to access, or type the URL manually. If you are asked for your bank information unnecessarily, do not write it.
See the preview before opening the URL: Do not open the URL immediately when scanning a QR code. First, see the preview, check the link structure. If there is something strange (for example the connection does not have https certificate) think twice before opening it.
Use a password manager: If you come across a malicious QR code, secure password managers will detect it and will not autofill the information requested from you on the opened site.