Beware of fraud: fake bank letter with QR codes in circulation
Beware of fraud: fake bank letter with QR codes in circulation
Hannover (dpa/tmn)-In a worrying development, various authorities warn of the dangerousness of manipulated QR codes. Currently, fraudsters send fake letters who pretend to come from German banks. These letters contain QR codes, which should lead to fake websites and make unsuspecting users to reveal sensitive data. The State Criminal Police Office Lower Saxony raises the alarm and advises the extreme caution.
A quick scanning of a QR code can have far-reaching consequences. The masterminds behind such fraud stitches use the letter creation to bring confidence with supposedly serious communication. In these fake writing, the "necessity" is often emphasized to check identity in the context of EU regulations. Such a tactic plays subtly on the security awareness of the citizens and uses it to steal private information.
how to protect yourself
In the event of uncertainties about the authenticity of the letters received, the LKA recommends contacting your own bank directly by phone. However, care should be taken to obtain the telephone number from the official website of the bank and not to be found out of the suspect, so as not to fall into the trap of the fraudsters.
This new wave of fraud is not unique. In the past, QR codes have been associated with crooks several times, for example shly fraudsters with stickers that were attached to e-car charging stations. Fake QR codes are no longer a rare phenomenon in advertising emails. The stitch is becoming increasingly variable and creative, which makes it increasingly difficult for the average user to recognize fraud.
The dangers of quishing
QR codes used in various attacks not only aim at online banking access data. This phishing technique, generally known as "quishing", can tap a variety of information. This can be login data for different online services or even the inconspicuous installation of malware on the users' smartphones. It is alarming that QR codes, which are often perceived as practical and helpful, can also be misused as a vector for malicious activities.
Consumers must always be vigilant, not only compared to digital phishing but also in the physical world. A simple rule is: QR codes can be glued over or manipulated. Even if a QR code appears in real life, you should always remain critical.
To protect yourself effectively, there are some measures that consumers should consider:
- activate the settings of your smartphone so that the link is not open immediately when scanning QR codes. Many modern scanners only show a preview of the link before forwarding them to the actual website.
- Check the link carefully before clicking it. Does the URL displayed match what you expect? Are there typing errors or suspicious signs?
- be suspicious of shortened links. These can often disguise the actual address and represent an additional security gap.
The ability to scan QR codes so easily and access it brings responsibility. Consumers should not underestimate the susceptibility of this technology and always be on the hat off so as not to become victims of criminal machinations.
technology use responsibility
dealing with QR codes requires awareness of potential dangers. In a world that is increasingly digitized, it is important to make informed decisions and to be skeptical about information that appears real at first glance. The implementation of preventive steps and constant questioning can help protect yourself from the dark side of this practical technology.
Hannover (dpa/tmn) - mail mail may generally make a reputable impression. But you shouldn't rely on this feeling. The State Criminal Police Office (LKA) of Lower Saxony is currently sending fake fake falsified writing with QR codes. Anyone who scans one of these codes and follow the link stored in it ends up on a fake banking page and is asked to enter sensitive data.
Of course you shouldn't do that, because the criminals pursue the goal of gaining access to your own online banking. The information in the letters is said to have the assertion of having to check the identity of the customers based on EU regulations.
handle to the listener brings clarity
If you are unsure whether such a letter is real, the LKA advises you to ask the bank by phone. Caution: you should only choose a known number and just do not refer to the possibly fake letter.
Finally, QR codes printed on e-car charging stations had made headlines that had overlooked fraudsters with QR code stickers. But fake QR codes in supposed advertising emails have also been a problem for years.
quishing can have many goals
In addition to access to online banking, criminals with such QR code phishing attacks (also known as quishing) can be targeted on registration data for all possible services and accounts. It may also be that QR codes should download and install malware.
No matter whether digitally, printed on paper or somewhere: consumers should always keep in mind that QR codes are overlimbed, manipulated or have already been created with fraudulent intentions.
precautionary measures when dealing with QR codes:
-On the smartphone, the immediate opening of the left from QR codes should be deactivated as far as possible, the LKA advises. Instead, only the link or a preview image of the website should be displayed behind the link. Such previews are mostly pre-set if you use the smartphone camera or a browser like Firefox as a scanner.
- Looking on the links from QR codes before opening: Is it the expected website without typing errors, numbers or bookstores? Can the actual domain not be recognized at a glance, but is at the very end of a very long left? Is the actual address hidden because the link comes from a service to shorten internet addresses?
background information on QR code fraud mesh
The use of QR codes has increased significantly in recent years, especially during the Covid 19 pandemic, as contactless transactions. Many companies and banks have used QR codes to provide access to information or services. However, this has also created a dark side because this technology is exploited by criminals to carry out phishing attacks.
The LKA Lower Saxony has found that after an increasing number of such fraud cases, people are increasingly victims of quishing. This form of fraud can be taken particularly seriously because it can camouflage itself strongly through the supposed seriousness of the medium used, such as letter mail or emails. In many cases, the attackers are very clever in imitation the designs and the language used by legitimate companies.
statistical data and trends
According to a study by the Federal Association for Information Management, Telecommunications and New Media (Bitkom), almost 40 % of those surveyed stated in any form of cybercrime. This also included phishing and quishing attacks that have increased significantly. For example, reports show that the number of reported phishing incidents in Germany has increased by about 30 % compared to the previous year.
In addition, a survey by the Federal Association of Consumer Association pointed out that millions of euros were lost through such fraud stitches every year, which underlines the need to raise increased awareness of consumers. Therefore, the clarification of quishing and the right precautions is essential to ensure the safety of users in the digital space.