QR codes have become a ubiquitous tool in recent times, streamlining tasks for users but also harboring potential risks. These scannable black and white patterns are now prevalent, allowing Android and iPhone users to easily access websites, download apps, sign into streaming services, and make payments simply by scanning them with their phone cameras. While they offer convenience, QR codes also pose a threat, with numerous individuals falling victim to counterfeit versions aimed at stealing personal information.
Although QR code attacks are not a new phenomenon, they are on the rise and becoming more sophisticated. A concerning new scam targeting users is called “brushing.” In this deceptive tactic, criminals send unsolicited packages to homes containing a phony QR code. The parcels typically arrive without sender details to pique curiosity. Recipients are prompted to scan the code to uncover the sender or return instructions, unknowingly exposing themselves to fraud.
Victims of this scam risk divulging sensitive personal data, enabling cybercriminals to exploit them for financial gain or further fraudulent activities. Research conducted by cybersecurity firm NordVPN indicates a growing issue, estimating that over 26 million individuals may have been redirected to malicious websites through fake QR codes.
Marijus Briedis, NordVPN’s Chief Technology Officer, highlighted the deceptive nature of QR codes, stating that they have become a covert entry point for cybercriminals. Briedis advised treating unexpected QR codes with the same caution as suspicious email links, emphasizing the importance of vigilance.
To safeguard against QR code scams, consider the following tips:
1. Verify the source of a QR code before scanning it. If unsure of its origin, refrain from scanning and contact the sender through official channels.
2. Utilize the link preview feature on smartphones to assess website links before opening them. Avoid proceeding if the link appears unusual or unexpected.
3. Keep your phone’s security software up to date and use a VPN while browsing to mitigate risks of accessing harmful websites and data breaches.
4. Share safety tips with friends and family, especially those less familiar with technology, to prevent falling prey to scammers.
While QR codes offer convenience, exercising caution before scanning them on your smartphone and refraining from sharing personal information blindly are critical practices to adopt.
The QR code, formally known as Quick Response code, was initially developed in 1994 by Masahiro Hara and his team at Denso Wave in Japan. Originally intended for efficient tracking of automotive parts, QR codes gained widespread popularity beyond manufacturing due to their capacity to store more data than conventional barcodes. Denso Wave’s decision not to enforce patent rights enabled broad adoption, leading to the codes’ integration into marketing, payment systems, ticketing, and authentication services. The global surge in QR code usage occurred in the 2010s and skyrocketed during the COVID-19 pandemic for contactless applications like menus, check-ins, and payments.