Cybersecurity: Links to Malware sites in QR

  • Thread starter Thread starter Astronuc
  • Start date Start date
  • Tags Tags
    Links
AI Thread Summary
QR codes are increasingly used for convenience in directing users to websites, but they pose significant security risks, particularly when sourced from unsolicited parties. The FBI has issued warnings about the potential for cybercriminals to exploit QR codes by linking them to malicious sites that can steal personal data or install malware on devices. This malware can compromise sensitive information, such as banking details and login credentials. Users are advised to avoid scanning QR codes from unknown sources, refrain from responding to unsolicited emails or messages, and verify the legitimacy of requests before taking action. The ease of replacing legitimate QR codes with malicious ones in public spaces further heightens the need for caution and vigilance.
Astronuc
Staff Emeritus
Science Advisor
Gold Member
Messages
22,340
Reaction score
7,138
DON'T activate websites/links in QR codes, especially if from unsolicited parties.

If You Scanned That QR Code from the Super Bowl (Or Any QR Code), the FBI Has a Warning for You
QR codes are appearing everywhere--even in Super Bowl ads--but consumers and business owners should know that there are risks.

https://www.inc.com/jason-aten/if-y...ing-super-bowl-fbi-has-a-warning-for-you.html

QR codes are popping up everywhere as a way to direct customers to information without having to hand them a piece of paper or take a chance that they might mistype a URL.

There's a problem, however. Not every QR code is what it seems, and they've become a tool for bad actors. That's why the FBI is warning consumers to be aware any time they scan a QR code, and take steps to protect their information. While the FBI's warning isn't specifically in response to the Coinbase ad, there's an important lesson here--not just for consumers, but for business owners, as well.

The beauty of a QR code is that instead of asking someone to remember a website, you simply embed it in the code. When they scan the code, it takes them directly to whatever webpage you want.

As you might imagine, anytime a new technology makes it easier to get people to visit a website, or send money, someone is going to abuse it. That's exactly the warning that the FBI sent last month:
"Cybercriminals are taking advantage of this technology by directing QR code scans to malicious sites to steal victim data, embedding malware to gain access to the victim's device, and redirecting payment for cybercriminal use."

Once Malware gets on a system, it can look for or record personal information, e.g., bank accounts and login information. If one uses online banking or electronic funds transfer, malware may 'steal' information.

So, protect oneself.

Other do nots:

Do not respond to unsolicited emails or messages.

Do not click on links in messages or emails.

Do ask oneself if you would expect a friend or contact to send any such request or information? Always, check with the person you think might have contacted you. Again, do not respond to unsolicited emails, or emails saying one's account has been compromised and personal information is needed.

Unless one knows the other party well, and is expecting an email, be wary, as in cautious, or suspicious.
 
  • Like
Likes Oldman too and StevieTNZ
Computer science news on Phys.org
Yes, it is easy to print out a malicious CR code and stick it on top of a legitimate code in a public place. Someone would have to go around scanning EVERY public QR code to see if it had been switched.
 
In my discussions elsewhere, I've noticed a lot of disagreement regarding AI. A question that comes up is, "Is AI hype?" Unfortunately, when this question is asked, the one asking, as far as I can tell, may mean one of three things which can lead to lots of confusion. I'll list them out now for clarity. 1. Can AI do everything a human can do and how close are we to that? 2. Are corporations and governments using the promise of AI to gain more power for themselves? 3. Are AI and transhumans...
Thread 'ChatGPT Examples, Good and Bad'
I've been experimenting with ChatGPT. Some results are good, some very very bad. I think examples can help expose the properties of this AI. Maybe you can post some of your favorite examples and tell us what they reveal about the properties of this AI. (I had problems with copy/paste of text and formatting, so I'm posting my examples as screen shots. That is a promising start. :smile: But then I provided values V=1, R1=1, R2=2, R3=3 and asked for the value of I. At first, it said...
i am customizing a Linux distro [arch] into love os which I am building to impress my crush. I had an idea to integrate an ai model into the Linux system so it can speak like me but romantically. but I don't know what or how to do. I don't know the basic concept of Linux but yet I am customizing my os purely relying on chat gpt and perplexity. when i ask chat gpt about this it said to fine tune an ai model and integrate to the Linux distro and my friend said for the data to be fed to the ai...

Similar threads

Replies
13
Views
3K
Replies
2
Views
502K
Back
Top