Be careful when you scan QR codes. The latest cybersecurity threat is Quishing where QR codes are displayed online or in physical locations (e.g. shops, parking lots) where you need to effect payment. If you scan a QR code that is not directing you to the official mobile app (e.g. a bank mobile app), DO NOT enter your personal information and card/bank details.

 

Precautions when scanning QR codes

1. Use the built-in QR code scanner in your device’s camera app. If your device doesn’t have a built-in scanner, only download a trusted third-party scanning app from your device’s official app store.
2. Check for physical tampering before you scan. Cybercriminals can generate malicious QR codes and print them as stickers to cover up legitimate ones. Never scan QR codes placed in random location.
3. Review the link displayed on your device’s scanning app before you click. Look for spelling errors, misplaced characters, and shortened web addresses, which are signs of a malicious website.
4. Never enter sensitive information into a website you were directed to by a QR code unless you’re certain the site is legitimate.