Beware of QR Code Phishing: How to Stay Safe Online

In our increasingly digital world, QR codes have become a ubiquitous sight. These square-shaped pattern of dots have made it easier for tasks like accessing websites, making payments, viewing restaurant menus and connecting to Wi-Fi networks. However, with convenience comes risk, and QR codes are no exception. In recent years, QR code phishing has been steadily gaining popularity among cybercriminals. Here’s what you need to know to protect yourself from QR code phishing.

What is QR Code Phishing?
QR code phishing involves malicious actors creating QR codes that, when scanned, lead users to a malicious website or trigger actions that compromise their login credentials or personal information. These codes can be placed on physical objects or embedded in digital content like text messages and emails.

How Does QR Code Phishing Work?

1. Scammers attach malicious QR codes to emails, advertisements or signs.
2. The scanned QR code then takes the victim to a fraudulent website.
3. Once on the fake website, victims are then asked to enter their credentials or any other sensitive information.
4. Hackers then collect the entered data and use it as part of credential theft or other criminal activities.

How to Recognize and Protect Yourself from Malicious QR Codes

To protect yourself from a possible QR code phishing attack, it is important to understand how they work and what to look for.

Make sure you check the URL before clicking on any QR code to ensure its legitimacy.

Malicious QR codes often have poor image quality, unrecognizable URL or shady websites linked to them. They might also prompt you to download an app or enter personal information.

Some other tips to help keep you protected from malicious QR Codes include:

• Always make sure that you know where the code is coming from before scanning it. Look for indications that it may be malicious such as typos, misspellings or suspicious URLs.
• Use reliable QR code scanning apps and enable two-factor authentication.
• Regularly update your device’s operating system and security software to protect against known vulnerabilities.
• Never give out any of your personal information unless you are certain that the website or recipient is legitimate.
• If you do suspect that a QR code is fraudulent, do not scan it. Instead, report it to law enforcement or contact the site administrators.

If you feel you have been victimized by a fraud attempt, contact our Customer Care Center immediately at (800) 447-2265 or visit one of our branches.