To QR, or not to QR, that is the question?

Disclaimer

The content covers complex events and environments, it equips the reader on how to stay SAFE. The advice provided here, shares on the experience of the author and is designed to improve the readers’ situational awareness. It would be impossible to offer the answers to every situation that one may encounter and should not be used as a substitute for the readers own instincts.

Written by - Colin Howe - PhD student, MSc, MSyI, CMI, SRMC? Head of Security Risk and Resilience - Comera Risk

Fraudulent QR codes are purposely created to deceive and harm users. They can lead to malicious websites, harmful software downloads, or personal information theft. These fake codes can be distributed through various methods, including social engineering, phishing emails, or physical QR code stickers placed in public areas. For example, public posters or parking payment machines displaying links that are actually fake.

To protect yourself from these fraudulent QR codes, it is important to follow these precautions:

1. Verify the source: Only scan QR codes from trusted sources or reputable websites. Be cautious about scanning codes from unknown or suspicious sources, especially in public places.

2. Check the URL link: Before confirming a QR code, examine the associated URL to ensure it is legitimate and related to the intended purpose. If it seems suspicious or unrelated, avoid conformation.

3. Keep your software up to date: Regularly update your device's operating system and applications to benefit from security patches that safeguard against potential vulnerabilities.

4. Use a QR code scanner with security features: Consider using a QR code scanner apps with built-in security features that can detect and warn against potentially harmful codes. Seek out apps that alert you to dangerous links hidden within QR codes.

5. Disable automatic scanning: Some features automatically scan QR codes when the camera app is active or through a QR code reader widget. Disable this feature to have more control over QR code scanning.

6. Check for tampering: Carefully inspect the QR code for any signs of tampering or alteration, such as inconsistent pixels, blurry images, or unusual placement. Be aware of stickers placed on top of posters or signs. Trust your instincts, if something feels suspicious or off about a QR code, trust your instincts and refrain from scanning it.

Be cautious with personal information, avoid scanning QR codes that require you to enter personal information like your name, address, or financial details. Legitimate QR codes usually do not require such information.

Remember that fraudulent QR codes are designed to deceive and exploit unsuspecting users. By following these precautions, you can minimise the risk of falling victim to fake QR codes and protect your personal information and devices.

For more on this topic and the dangers of state and foreign state activities why not jump on an open Security Awareness in Fragile Environments (SAFE) course.

For more,?Comera Risk?offers expert advice on security and risk for groups and individuals. We have a proven track record of delivering results, working alongside UK government bodies, education providers and private clients. Our team have operated in highly challenging environments and understand the risks posed and how these are best mitigated.

Stay ahead of?#threats?and?#safeguard?your?#team?by signing up for the SAFE Course NOW! ?? #events?#safety?#security?#team?#work?#riskmanagement?#career?#training?#travel?#growth?#staysafe #loneworker