igforum.bio / think-twice-before-scanning-this-qr-code-mdash-it-could-be-a-phishing-scam-tom-s-guide - 251823
M
Think twice before scanning this QR code - it could be a phishing scam Tom's Guide Skip to main content Tom's Guide is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Here's why you can trust us.
Madison Singh Member
access_time 2 minutes ago
Think twice before scanning this QR code - it could be a phishing scam Tom's Guide Skip to main content Tom's Guide is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Here's why you can trust us.
thumb_up Like (0)
comment Reply (2)
share Share
visibility 541 views
thumb_up 0 likes
comment 2 replies
L
Luna Park 2 minutes ago
Think twice before scanning this QR code - it could be a phishing scam By Anthony Spadafora publishe...
S
Sofia Garcia 2 minutes ago
Just like with other phishing campaigns, this one begins with an email that appears to come from DHL...
L
Think twice before scanning this QR code - it could be a phishing scam By Anthony Spadafora published 1 July 2022 Just like with links, QR codes can also be malicious (Image credit: Phoderstock/Shutterstock) As online shopping has quickly become the norm over the last few years, cybercriminals now frequently use fake delivery notifications as bait in their scams. This makes sense as those who shop online often may sometimes forget about a package or miss a call from a courier like FedEx or UPS.  According to a new blog post (opens in new tab) from the cybersecurity firm Kaspersky, a new phishing scam impersonating DHL is currently making the rounds online. However, what sets this campaign apart is how the cybercriminals behind it are using QR codes to avoid detection.
Liam Wilson Member
access_time 8 minutes ago
Think twice before scanning this QR code - it could be a phishing scam By Anthony Spadafora published 1 July 2022 Just like with links, QR codes can also be malicious (Image credit: Phoderstock/Shutterstock) As online shopping has quickly become the norm over the last few years, cybercriminals now frequently use fake delivery notifications as bait in their scams. This makes sense as those who shop online often may sometimes forget about a package or miss a call from a courier like FedEx or UPS.  According to a new blog post (opens in new tab) from the cybersecurity firm Kaspersky, a new phishing scam impersonating DHL is currently making the rounds online. However, what sets this campaign apart is how the cybercriminals behind it are using QR codes to avoid detection.
thumb_up Like (4)
comment Reply (3)
thumb_up 4 likes
comment 3 replies
A
Andrew Wilson 2 minutes ago
Just like with other phishing campaigns, this one begins with an email that appears to come from DHL...
C
Charlotte Lee 1 minutes ago
Usually these types of phishing emails would feature a link to "resolve the issue" but thi...
Show 1 more replies
E
Just like with other phishing campaigns, this one begins with an email that appears to come from DHL. While the sender's email address is a random set of words (a red flag to look out for), the body of the email is quite convincing and includes the company's logo along with a fake order number and the receipt for a package. The message itself explains that an order has arrived at the recipient's local post office but the courier was unable to deliver it in person.
Emma Wilson Admin
access_time 6 minutes ago
Just like with other phishing campaigns, this one begins with an email that appears to come from DHL. While the sender's email address is a random set of words (a red flag to look out for), the body of the email is quite convincing and includes the company's logo along with a fake order number and the receipt for a package. The message itself explains that an order has arrived at the recipient's local post office but the courier was unable to deliver it in person.
thumb_up Like (7)
comment Reply (2)
thumb_up 7 likes
comment 2 replies
S
Sebastian Silva 1 minutes ago
Usually these types of phishing emails would feature a link to "resolve the issue" but thi...
E
Ella Rodriguez 4 minutes ago
According to Kaspersky, the idea seems to be that a victim will open the phishing email on their com...
B
Usually these types of phishing emails would feature a link to "resolve the issue" but this time the cybercriminals responsible have used a QR code (complete with the DHL logo) and for good reason. All of the best email services automatically scan for malicious links in messages that can lead to phishing sites or malware. However, many of them can't yet scan for malicious QR codes which is why cybercriminals have begun using them more frequently in their schemes.  Switching from a bigger screen to a smaller one&nbsp Besides bypassing email security solutions, this campaign also makes use of QR codes to make it easier to trick users once they arrive on the cybercriminals' phishing page.
Brandon Kumar Member
access_time 16 minutes ago
Usually these types of phishing emails would feature a link to "resolve the issue" but this time the cybercriminals responsible have used a QR code (complete with the DHL logo) and for good reason. All of the best email services automatically scan for malicious links in messages that can lead to phishing sites or malware. However, many of them can't yet scan for malicious QR codes which is why cybercriminals have begun using them more frequently in their schemes.  Switching from a bigger screen to a smaller one&nbsp Besides bypassing email security solutions, this campaign also makes use of QR codes to make it easier to trick users once they arrive on the cybercriminals' phishing page.
thumb_up Like (0)
comment Reply (3)
thumb_up 0 likes
comment 3 replies
D
Dylan Patel 14 minutes ago
According to Kaspersky, the idea seems to be that a victim will open the phishing email on their com...
T
Thomas Anderson 8 minutes ago
For instance, on mobile devices, URLs are not fully visible which makes them more difficult to inspe...
Show 1 more replies
D
According to Kaspersky, the idea seems to be that a victim will open the phishing email on their computer and then switch to their smartphone to scan the QR code. As a result, the malicious site will open on a smaller screen where signs of phishing are harder to spot.
David Cohen Member
access_time 25 minutes ago
According to Kaspersky, the idea seems to be that a victim will open the phishing email on their computer and then switch to their smartphone to scan the QR code. As a result, the malicious site will open on a smaller screen where signs of phishing are harder to spot.
thumb_up Like (23)
comment Reply (2)
thumb_up 23 likes
comment 2 replies
E
Evelyn Zhang 3 minutes ago
For instance, on mobile devices, URLs are not fully visible which makes them more difficult to inspe...
A
Andrew Wilson 8 minutes ago
While this doesn't raise any suspicions, the next page asks them to share their bank or credit ...
Z
For instance, on mobile devices, URLs are not fully visible which makes them more difficult to inspect. If a user does scan the QR code in the fake email from DHL, they're taken to a website with small text and informed their package will arrive in 1-2 days but to receive it, they'll need to enter their first name, last name and address.
Zoe Mueller Member
access_time 12 minutes ago
For instance, on mobile devices, URLs are not fully visible which makes them more difficult to inspect. If a user does scan the QR code in the fake email from DHL, they're taken to a website with small text and informed their package will arrive in 1-2 days but to receive it, they'll need to enter their first name, last name and address.
thumb_up Like (19)
comment Reply (3)
thumb_up 19 likes
comment 3 replies
Z
Zoe Mueller 4 minutes ago
While this doesn't raise any suspicions, the next page asks them to share their bank or credit ...
E
Ethan Thomas 6 minutes ago
How to stay safe when scanning QR codes&nbsp (Image credit: Alba Lantigua/Unsplash) When Japane...
Show 1 more replies
V
While this doesn't raise any suspicions, the next page asks them to share their bank or credit card details to pay for the delivery. It's worth noting that DHL actually requires payment for deliveries in advance which makes this another red flag. As making charges to the card after harvesting its details would be a dead giveaway, the cybercriminals behind this campaign are more likely planning to sell the payment data they've collected on the dark web at a later date.
Victoria Lopez Member
access_time 35 minutes ago
While this doesn't raise any suspicions, the next page asks them to share their bank or credit card details to pay for the delivery. It's worth noting that DHL actually requires payment for deliveries in advance which makes this another red flag. As making charges to the card after harvesting its details would be a dead giveaway, the cybercriminals behind this campaign are more likely planning to sell the payment data they've collected on the dark web at a later date.
thumb_up Like (50)
comment Reply (3)
thumb_up 50 likes
comment 3 replies
G
Grace Liu 32 minutes ago
How to stay safe when scanning QR codes&nbsp (Image credit: Alba Lantigua/Unsplash) When Japane...
T
Thomas Anderson 15 minutes ago
Despite the risk that a QR code can take you to any website online and even dangerous ones, many use...
Show 1 more replies
H
How to stay safe when scanning QR codes&nbsp (Image credit: Alba Lantigua/Unsplash) When Japanese engineer Masahiro Hara came up with the idea for QR codes back in 1994, he created them for use in automobile manufacturing to make it easier to keep track of car parts in factories. He never intended for them to be so ubiquitous or used for payments.  Now though, QR codes have become a popular fixture online and in the real world at places like cafes and restaurants.
Henry Schmidt Member
access_time 16 minutes ago
How to stay safe when scanning QR codes&nbsp (Image credit: Alba Lantigua/Unsplash) When Japanese engineer Masahiro Hara came up with the idea for QR codes back in 1994, he created them for use in automobile manufacturing to make it easier to keep track of car parts in factories. He never intended for them to be so ubiquitous or used for payments.  Now though, QR codes have become a popular fixture online and in the real world at places like cafes and restaurants.
thumb_up Like (35)
comment Reply (0)
thumb_up 35 likes
L
Despite the risk that a QR code can take you to any website online and even dangerous ones, many users don't even think before scanning them. This phishing scam and others like it use this to their advantage to dupe unsuspecting users.
Liam Wilson Member
access_time 18 minutes ago
Despite the risk that a QR code can take you to any website online and even dangerous ones, many users don't even think before scanning them. This phishing scam and others like it use this to their advantage to dupe unsuspecting users.
thumb_up Like (5)
comment Reply (1)
thumb_up 5 likes
comment 1 replies
S
Sophia Chen 6 minutes ago
For this reason, you should always inspect the URL of a QR code before proceeding to any website. To...
K
For this reason, you should always inspect the URL of a QR code before proceeding to any website. To make this easier to do, Kaspersky offers a free app for Android and iOS called Kaspersky QR Scanner (opens in new tab) that will tell you if a QR code points to a dangerous site. Likewise, competing antivirus maker Sophos has created its own QR code scanner app called Intercept X that provides the same functionality.Bitdefender Antivirus Plus (opens in new tab)$19.99 (opens in new tab)ESET NOD32 (opens in new tab)$39.99/year (opens in new tab)Norton 360 Standard (opens in new tab)$39.99/year (opens in new tab)Avast Free Antivirus (opens in new tab)AVG AntiVirus Free (opens in new tab)Visit Site (opens in new tab)at Bitdefender (opens in new tab) Be In the Know Get instant access to breaking news, the hottest reviews, great deals and helpful tips.
Kevin Wang Member
access_time 50 minutes ago
For this reason, you should always inspect the URL of a QR code before proceeding to any website. To make this easier to do, Kaspersky offers a free app for Android and iOS called Kaspersky QR Scanner (opens in new tab) that will tell you if a QR code points to a dangerous site. Likewise, competing antivirus maker Sophos has created its own QR code scanner app called Intercept X that provides the same functionality.Bitdefender Antivirus Plus (opens in new tab)$19.99 (opens in new tab)ESET NOD32 (opens in new tab)$39.99/year (opens in new tab)Norton 360 Standard (opens in new tab)$39.99/year (opens in new tab)Avast Free Antivirus (opens in new tab)AVG AntiVirus Free (opens in new tab)Visit Site (opens in new tab)at Bitdefender (opens in new tab) Be In the Know Get instant access to breaking news, the hottest reviews, great deals and helpful tips.
thumb_up Like (16)
comment Reply (1)
thumb_up 16 likes
comment 1 replies
N
Noah Davis 29 minutes ago
Anthony SpadaforaSenior Editor Security and NetworkingAnthony Spadafora is the security and networki...
S
Anthony SpadaforaSenior Editor Security and NetworkingAnthony Spadafora is the security and networking editor at Tom's Guide where he covers everything from data breaches and ransomware gangs to password managers and the best way to cover your whole home or business with Wi-Fi. Before joining the team, he wrote for ITProPortal while living in Korea and later for TechRadar Pro after moving back to the US.
Sofia Garcia Member
access_time 22 minutes ago
Anthony SpadaforaSenior Editor Security and NetworkingAnthony Spadafora is the security and networking editor at Tom's Guide where he covers everything from data breaches and ransomware gangs to password managers and the best way to cover your whole home or business with Wi-Fi. Before joining the team, he wrote for ITProPortal while living in Korea and later for TechRadar Pro after moving back to the US.
thumb_up Like (1)
comment Reply (2)
thumb_up 1 likes
comment 2 replies
J
Jack Thompson 2 minutes ago
Based in Houston, Texas, when he's not writing Anthony can be found tinkering with PCs and game...
A
Ava White 13 minutes ago
Think twice before scanning this QR code - it could be a phishing scam Tom's Guide Skip to mai...
N
Based in Houston, Texas, when he's not writing Anthony can be found tinkering with PCs and game consoles, managing cables and upgrading his smart home.  Topics Security See all comments (0) No comments yet Comment from the forums MOST READMOST SHARED1Amazon Prime Early Access Sale - best deals right now2iPhone 14 Pro's chip reportedly costs more than double iPhone 13 Pro3Google Pixel event recap - Pixel 7, Pixel Watch, Pixel Tablet and latest news4Hell Let Loose is too good for its own good5I'm an avid Google Maps guide - here's why it's my favorite place to post1iPhone 14 Pro's chip reportedly costs more than double iPhone 13 Pro2Google Pixel event recap - Pixel 7, Pixel Watch, Pixel Tablet and latest news3Hell Let Loose is too good for its own good4I'm an avid Google Maps guide - here's why it's my favorite place to post5High-yield savings account - what it is and how to open one
Natalie Lopez Member
access_time 12 minutes ago
Based in Houston, Texas, when he's not writing Anthony can be found tinkering with PCs and game consoles, managing cables and upgrading his smart home.  Topics Security See all comments (0) No comments yet Comment from the forums MOST READMOST SHARED1Amazon Prime Early Access Sale - best deals right now2iPhone 14 Pro's chip reportedly costs more than double iPhone 13 Pro3Google Pixel event recap - Pixel 7, Pixel Watch, Pixel Tablet and latest news4Hell Let Loose is too good for its own good5I'm an avid Google Maps guide - here's why it's my favorite place to post1iPhone 14 Pro's chip reportedly costs more than double iPhone 13 Pro2Google Pixel event recap - Pixel 7, Pixel Watch, Pixel Tablet and latest news3Hell Let Loose is too good for its own good4I'm an avid Google Maps guide - here's why it's my favorite place to post5High-yield savings account - what it is and how to open one
thumb_up Like (8)
comment Reply (0)
thumb_up 8 likes

Write a Reply

Similar Discussions