Saturday 9 December 2023

What is QRishing, the new modality of cyber fraud?

Do you scan every QR code you see? This clever phishing scam might make you think twice...

Paying the bills


The Casino Games With the Best Odds

Casino gambling on iGaming sites like mrbet or in...

Former Panamanian presidential candidate connected to a money laundering investigation arrested in Costa Rica

QCOSTARICA -- Costa Rican police on Tuesday arrested Panamanian...

Bailey Bridge will ease traffic congestion in front of San Jose airport

QCOSTARICA -- On Friday (tomorrow) traffic will be enabled...

Half of Ticos will vote in municipal elections, UNA survey

QCOSTARICA -- 46.3% of voters are 100% convinced that...

Fidel’s Sister and Outspoken Critic, Juanita Castro, Dies in Miami

Q24N - Juanita Castro, the younger sister of Fidel...

Exploring the potential of AI in sports betting

Sports betting is a popular and exciting activity that...

Dollar Exchange

¢526.96 BUY

¢533.11 SELL

9 December 2023 - At The Banks - Source: BCCR

Paying the bills


QCOSTARICA – Do you scan every QR code you see? This clever phishing scam might make you think twice due to QRishing, a form of phishing attack where hackers exploit QR codes to steal private information, install malicious software on a device, or direct a person to an unsafe website.

QRishing exploits the tendencies of phone users to scan QR codes out of curiosity, boredom, or necessity

QRishing is one of the fraud modalities taking advantage of soccer fans in the framework of the World Cup in Qatar 2022.

This form of attack consists of implanting false codes and when the user scans it, they are directed to an illusory website that asks for their credentials; In this way, cyberattackers steal payment data, duplicate cards or supplant the identity of the victims.

- Advertisement -

“Cyber attacks are constantly evolving and there are more and more ways in which we receive fraudulent notifications, for this reason, it is important that people understand that no one is exempt from being a victim of QRishing or any other form of theft. It is essential to be informed of these trends to know how to proceed and not fall into cybercrime” said Joey Milgram, manager of Secure Solutions in Costa Rica.

So how do these attacks work? How can you avoid falling victim to a QRishing attack?

The website explains QRishing exploits the tendencies of phone users to scan QR codes out of curiosity, boredom, or necessity. For instance, the attacker may leave flyers at a bus stop or on tables at restaurants or coffee shops. When a person scans the QR code with their phone, thinking it’s an ad or menu, it displays a URL, an image, or a map with directions to a location, among other things.

From here on, scammers rely on social engineering (the act of manipulating people to steal private information from them) to trick victims into sharing sensitive information. Hackers may also exploit vulnerabilities like WebKit bugs in a browser to take over the victim’s device.

Of course, not everyone would scan a random QR code without an incentive or a caption explaining what they can expect to see.  Or do they? So cybercriminals often find another way to get people interested.

How to Avoid QRishing

Scanning and reading a QR code mostly requires two things: a camera and a browser to follow the information in the QR code. As it’s so simple, that means it’s simple to avoid falling victim too.

Here’s how:

- Advertisement -
  • Block camera access on your phone
  • Disable automatically opening links when scanning a QR code
  • Keep your phone software updated
  • Avoid sharing sensitive information online
  • Think before you scan
  • Do not trust spam emails

If the QR code leads to a page that asks for personal information, especially passwords or data related to payment methods, it is important to stop and think for a moment if the context requires it.

On the good side, QRishing is less common than other types of phishing because an attacker would need to invest some effort into distributing the malicious QR code.

However, this form of phishing is relatively new, and not many people know about it, which means people can easily fall for it. Cybercriminals who carry out these attacks have everything to gain and nothing to lose.


- Advertisement -
Paying the bills
"Rico" is the crazy mind behind the Q media websites, a series of online magazines where everything is Q! In these times of new normal, stay at home. Stay safe. Stay healthy.

Related Articles

Attorney General assures Aldesa will go to court

QCOSTARICA -- The investigation into the so-called “caso Aldesa” presents significant...

Banco Nacional launched insurance against fraud?

RICO's Q (OPINION) The Banco Nacional (BN) has launched comprehensive protection...

Subscribe to our stories

To be updated with all the latest news, offers and special announcements.