Be Wary of QR codes in Alleged Bank Correspondence
Using a QR code to access the internet bypasses the need to manually type an address, but unfortunate souls can fall prey to sneaky tricksters exploiting this advantage. Crooked individuals misuse these QR codes to steer unsuspecting victims towards fake and dangerous websites.
Appealing to our trust, scammers have been sending bogus mail from German banks with QR codes, as reported by the Lower Saxony State Criminal Police Office (LKA). Scanning the code and clicking on the linked site may lead to a replica of a banking website, enticing users to divulge sensitive information.
Of course, one should not hand over these private details since the aim of these criminals is to gain access to your online banking. Such letters allegedly state that identity validation is essential due to EU laws.
Dialing for clarity
If you're puzzled about the validity of such a letter, the LKA recommends giving your bank a call directly. Keep in mind to use established phone numbers and steer clear of the potentially untrustworthy digits provided within the fraudulent letter.
Recent news uncovered instances of fraudulent QR codes on electric vehicle charging stations, camouflaged with misleading stickers. Deceptive QR codes embedded in fake email advertisements have also been problematic for quite some time.
Quishing: a multipronged assault
Besides banking credentials, criminals can exploit this method for phishing attacks, aiming to usurp login details for various services and accounts. They may also try to initiate the download and installation of harmful software.
Regardless of the delivery medium - physical, digital, or printed - consumers need to constantly be vigilant, understanding that QR codes may bear counterfeit, tampered, or deceitful intentions.
Safeguarding measures regarding QR codes:
- Productively advocated by the LKA, smartphones should be configured to prevent immediate link activation from QR codes. Instead, only display the link or a webpage preview behind the link. This handy feature is usually enabled when utilizing the smartphone camera or browsers like Firefox as a scanning tool.
- Thoroughly analyze links from QR codes before clicking on them: Does it resemble the authentic site with no misspelled words or letter/number swaps? Is the actual domain deceptively concealed at the end of a lengthy link, or is it obfuscated due to the link originating from a service that condenses internet addresses?
To further protect your financial security, regularly monitor your current account statements for any unusual activities. This can help you spot any unauthorized transactions made through untrusted QR codes.
Moreover, it's essential to secure your current account with strong and unique passwords, and consider enabling two-factor authentication for an extra layer of security.