Imagine an innocuous email from a well-known supplier landing in your inbox. You open it, scan the attached QR code and BAM! – You have landed on a phishing site. Sounds like a scene from a cyber thriller, right? Well, these scenes are becoming reality more and more often.

The new stitch with the QR code

These criminals are clever, you have to give them that. They cleverly disguise their fraudulent intentions behind the trustworthy name of their supplier. They pose as this person in the hope that you won't think twice when scanning the QR code.

The email in full:

Subject: Orders 20232322434 and 20232322435
From: (email address of a known supplier )

Hello!

Enclosed you will find an offer from [company name of a well-known supplier], please scan the QR code to see the offer.

I await your reply regarding the attached code.

Sincerely /
Best regards

How the trick works

If you scan the inconspicuous code, you will be redirected to a page similar to the Microsoft login. But don't be fooled! Behind this facade there is a dangerous phishing site. This is where cyber criminals try to get your access data.

Recognize, understand, prevent

Detecting phishing emails is sometimes easier said than done. A suspicious sender? Clear. But what if everything looks real?

  • Be alert! Are you really expecting an offer? Does the QR code in the email actually have any meaning?
  • Trust your gut feeling. Is the salutation or greeting different than usual? Then listen up.
  • Check the QR code. Don't scan blindly. Check where the code takes you. A little tip on the side: It should be a website you know.

What if? - Make contact!

Not sure if the email is real? Get in contact. But not by email, but by telephone or via a known and verified address.

NOTE: As a rule, it is not common practice to communicate via QR codes and it often involves risks as the links behind them can easily be changed. When scanning, you could unintentionally load malicious software onto your device.

Conclusion: Making the invisible visible

The Internet is a constant game of cat and mouse between criminals and users. With the emergence of the new QR code phishing method, we all need to be a little more vigilant. It's not always easy to see the true intentions behind an email. But with a little caution and common sense, you can protect yourself from these threats.

Always be skeptical, check every link and QR code and protect your data!

Do you want to stay up to date? Then sign up for the Mimikama newsletter . And remember: an informed surfer is a safe surfer. Discover the Mimikama media education offer and strengthen your cyber defense!

Source:

Watchlist Internet

You might also be interested in:
In the clutches of cyber fraudsters: Why you aren't safe either!
The Microsoft Trojan: Don't let yourself be fooled!
AI hacker attacks: When ChatGPT suddenly becomes the enemy!
Sign up for the Mimikama newsletter

Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )