QR code scams, how to protect yourself?

In restaurants, on social networks, in banks and companies, the use of QR codes is growing. The growing use of which has fueled the appetite of scammers who use their imagination to steal personal information and banking details from their victims. Behind privacy, what we call now quishing is growing, and authorities and banking establishments fear that the Olympic Games will provide the first playground for this type of cyber crime.

The phenomenon is not new, and as early as July 2022, France-Soir warned about QR code scams which risk ruining tourists’ holidays.

Scams that increase risk during the Olympics.

What is it about? Scammers generate fake QR Codes that they will send by email to their victims, posing as a well-established company or establishment, or stand on real QR Codes on restaurant tables or elsewhere.

This fake QR code will link to a site created by scammers and users will then be asked to provide personal and/or banking data or to pay for a service they will not receive or what it is called a fine.

Fraudulent QR codes can also be used by scammers to install malware on your device.

As our colleagues haveWest Francemore than 800 criminal cases are ongoing regarding QR code scams and such scam risks increase during the Olympic Games where the squares will be necessary to access many sites and services.

What to do to avoid getting scammed?

Therefore, we will need to be careful, so what can we do to avoid being deceived?

First caution, when you receive a message or email inviting you to flash a QR code, check the sender. Some scammers really copy the description of the logo to give the impression of reality. So you must carefully check the email address of the sender. And you should know that in France, only domain names ending in “.fr” are subject to verification. In any case, all e-mail addresses that are endless and mean nothing, contain big names or have a slightly official air but with a “.fr” followed by another extension should cause your suspicion. The same goes for content with spelling errors.

And we cannot say enough, the bank will not ask you to give them your bank card number and your code.

Finally, more generally, don’t give out sensitive information after scanning a QR code.

If you have to scan a QR code externally, check that it doesn’t overlap. If so, don’t scan.

Check the URL before clicking. If it seems to you that it has nothing to do with the job you want, also avoid entering.

Then check the content of the QR code you will be directed to once you scan it. If the site you arrive at is not what you expected, quickly close the page and delete your history.

If you pay for something via a QR code, check that the amount and recipient correspond to the purchase you want to pay for.

Avoid using QR codes distributed on billboards during large public events or offered on posters.

And encourage other payment methods or consultation of your banking information whenever possible.

If you think you have been a victim of fraud

Has your vigilance been caught and you feel that you have opened a malicious QR code?

Stop your bank card as quickly as possible and in the meantime, disable all remote payment or withdrawal options through your internet site.

Contact your bank advisor.

Change all your access codes as soon as possible.

Scan for malware with the help of a scanner.

But the safest thing to do is to avoid using a QR code if you have any doubts.