Hello everyone! This is Shemihaza, the Sentinel. Whether it's for in-store payments, event registrations, or restaurant menus... QR codes have become an indispensable and incredibly convenient part of our daily lives. It's truly helpful to be able to quickly access information just by scanning with your smartphone.
However, behind this convenience, there can be traps set by malicious individuals aiming for your information. Today, let's explore together the sophisticated QR code-based scam known as 'Quishing' and the secrets to protecting yourself from it!
What exactly is 'Quishing'?
Quishing is a term combining 'QR Code (Quick Response)' and 'Phishing'. In essence, it's a trap designed to look like a normal QR code but is actually intended to steal personal information or money. There are three main tactics:
- ▸① **Cases where fake QR codes are pasted over genuine ones**: Scammers sometimes secretly place fake QR code stickers over legitimate QR codes in places you frequently use, such as parking payment machines, next to store registers, or on bus stop information boards. If you scan these, you might end up sending money to the scammer's account instead of the store's, or be redirected to a fake website.
- ▸② **Cases where fake QR codes are sent via email or message**: You might receive QR codes attached to 'fake emails' or 'SMS (Short Message Service)' messages disguised as coming from delivery companies, banks, or popular e-commerce sites. These messages often use urgent language like 'Urgent confirmation required' or 'Please complete your refund process' to trick you into scanning the QR code.
- ▸③ **What does that QR code link to? (Phishing, Malware, Unauthorized Transfers)**: Scanning a fake QR code can lead to three major dangers. The first is being redirected to a fake website (phishing site) that looks exactly like a legitimate one, where you'll be prompted to enter and have your ID, password, credit card information, etc., stolen. The second danger is being led to a download page that secretly installs viruses (malware) onto your smartphone, potentially leading to personal information leakage or remote control of your device. The third, and increasingly common, danger is being tricked into sending money to a scammer under the guise of receiving a 'refund'.
Checkpoints for Self-Protection
To safely use convenient QR codes, make it a habit to check the following points regularly!
- ✓Before scanning, check if the QR code is pasted unnaturally, if a sticker has been placed over it, or if anything seems out of place compared to its surroundings.
- ✓After scanning a QR code, carefully verify that the 'URL (website address)' displayed on your smartphone screen genuinely matches the URL of the service you usually use. Be especially wary of short, unclear 'shortened URLs'.
- ✓If, after scanning, you are prompted to download an app or enter 'personal information' such as a login ID, password, or credit card number, pause and calmly confirm if that action is truly necessary. Make it a habit to open the official app or website yourself and re-enter your information there.
- ✓Even if you are prompted to scan an unfamiliar QR code with messages like 'You will receive a refund' or 'Outstanding payment,' never scan it or follow instructions to send money.
Where to Seek Help When in Trouble
If you feel anxious, thinking 'Could I have fallen victim to a scam?' or if you have indeed been victimized, do not hesitate to seek help immediately instead of worrying alone. For unauthorized credit card use, call your card company right away to suspend your card. There are also public consultation services available.
Utilize the 'Consumer Hotline (188)', which connects you to your nearest consumer affairs center from anywhere in the country, or the 'Police Consultation Service ( #9110 )' for police inquiries. Please rely on these services anytime to protect your safety.
