QR Codes Used to Steal Funds
QR codes to redirect to malicious sites
Gain login and financial information.
Introduction:
The FBI made an announcement that cybercriminals are using tampered QR codes to redirect victims to malicious sites and gain login and financial information.
Since the boom of digital payments, QR codes have been playing a role for businesses to provide quick access to payments, website and others functions.
Details:
Threat actors are tampering with both digital and physical QR codes, replacing them with a malicious one.
Once a victim scans these QR codes, they are redirected to a malicious web page that seems legitimate.
After entering their credentials, cybercriminals gain the ability to steal funds.
Tampered QR's also provide links to malicious links that download malware to a device.
After gaining access, they can potentially exploit the victim through either personal or financial gain.
Currently:
Business payment QR's are also being tampered with, redirecting the payments to a malicious bank account.
This creates a huge financial loss for businesses.
Addition Security:
FBI also advised being cautious when entering financial login information through QR links.
Also, recovery of lost funds is not guaranteed.
Closing:
1) Check the website URL and make sure it is not malicious. Malicious links may look similar to legitimate ones with certain mistakes or misplaced letters.
2) On physical scanning of the code, make sure it is not malicious or a sticker on top of the original QR. Businesses need to ensure that the payments are received correctly from the QR.
3) In case you receive any email regarding failure of payments and they ask you to make the payment again with the QR they have provided,
call the company and verify. Do not use the mobile number given in the email. Search for legitimate ones and verify.
4) Do not download a QR scanner app which increases the risk of downloading malware. Most phones have built-in QR code scanners.
5) If you receive a QR code from a friend, call them and verify whether it is from them.
Reference link for the full story:
FBI Warns That Cybercriminals Uses QR Codes To Steal Victim Funds
This information is brought to you by Vectech Solutions, The Gold Standard in Cybersecurity
#qrcodes #maliciouswebsite #qrscannerapp