FBI raises alarm over use of fake QR codes to steal login information, money – as Australian authorities issue warning | #philippines | #philippinesscams | #lovescams

There are fears cybercriminals are trying to steal financial information from unsuspecting victims through QR codes used by restaurants and businesses – and Australians are among those at risk.

Last week the US Federal Bureau of Investigation (FBI) warned Americans that scammers had been tampering with QR codes which are used to facilitate convenient contactless service, payment and check-ins.

Instead, the fraudulent codes redirect victims to malicious sites that download malware, steal their login information or hijack payments.

Watch the latest News on Channel 7 or stream for free on 7plus >>

In one example, fraudulent codes had been placed on more than two dozen parking stations in Austin, Texas.

“People attempting to pay for parking using those QR codes may have been directed to a fraudulent website and submitted payment to a fraudulent vendor,” the Austin Police Department said when it announced an investigation.

While the QR codes themselves are not malicious in nature, the ease with which criminals can create their own fake codes to dupe consumers is a concern.

An ACCC spokesperson told 7NEWS.com.au that while it had not received many reports about malicious QR codes – two incidents had been reported to Scamwatch since December 1.

“Scamwatch has received two scam reports about QR codes, with a total loss of $120,” the spokesperson said. “One report involved redirecting users to another website for payment. Another report was related to cryptocurrency wallet phishing.”

In April last year, an Adelaide man was charged with two counts of obstructing emergency management operations after allegedly replacing genuine QR codes with fake ones at a South Plympton shopping centre.

SA Police said no personal data had been released through the fake QR codes.

The scam appears to be the latest effort by fraudsters to exploit habits and lifestyle changes during the COVID-19 pandemic.

In the pandemic’s early days, as the virus was pummelling Italy and Spain in March 2020, hackers tried to defraud residents of those countries using fake mobile apps claiming to offer updates on the virus.

How to protect yourself

The ACCC said Australians should take note of several things after scanning a QR code:

• Always use the government check-in app to scan the QR code to reduce the risk of a fake or unofficial QR code directing you to a rogue webpage.
• After scanning a QR code, pay attention to the website it directs you to. If it looks suspicious, close the browser immediately.
• Do not download any application from QR codes. Always go to the official app store and check reviews before downloading.
• Be aware of any website asking for personal information. Protect yourself from identity theft.
• If you have a cryptocurrency wallet, NEVER provide the seed phrase to anyone. No one will give away free crypto.

Those who believe their credit card details have been compromised should contact the card provider immediately, while those who may have lost personal information and are concerned can contact IDCARE on 1800 595 160, and make a report to Scamwatch.

Contact your bank if you think you have fallen victim to a scam and consider raising a complaint with the Australian Financial Complaints Authority if unsatisfied with the response.

– With CNN