Live
- 10 Tried-and-Tested Home Remedies for Toothaches
- Thila Taila Abhishekah Pooja to Lord Shaneswara
- Sudheer Babu’s ‘Harom Hara’ set to release on this auspicious day
- Priyanka Gandhi says BJP talking of 'tinkering' with Constitution with PM’s nod
- Vishwak Sen unveils gritty avatar as ‘Lankala Rathna’ in ‘Gangs of Godavari’ teaser
- ‘Kalki 2898 AD’ locks release date; film to entertain audience from June last week
- LS polls: PM Modi says BJP-NDA leading 2-0 after first two phases
- Plea in Madras HC seeks special polling arrangement for names 'missing' from Coimbatore voter list
- Ex CM KCR Bus tour on 4 th day
- Youth National Games 2024 kick-start in Delhi; over 5,000 athletes from 15 states vying for top honours
QR code scams up in India, over 20K cases registered since 2017: Report
As Indians have quickly adopted digital payments, a surge in QR code scams has plagued the country, according to a new report released on Tuesday, which revealed that between 2017 and May 31, 2023, about 20,662 cases (or 41 per cent) related to QR codes, malicious links, or debit/credit card fraud were registered in Bengaluru.
New Delhi: As Indians have quickly adopted digital payments, a surge in QR code scams has plagued the country, according to a new report released on Tuesday, which revealed that between 2017 and May 31, 2023, about 20,662 cases (or 41 per cent) related to QR codes, malicious links, or debit/credit card fraud were registered in Bengaluru.
According to the Palo Alto Networks, as most QR codes are visually similar and distinguishing differences is difficult, attackers can compromise a business's website by replacing the genuine QR code with their own.
When individuals scan this altered code, it can automatically redirect them to a phishing URL, where cybercriminals can request user credentials and gain access to email or social media accounts, among other things.
Alternatively, it could lead users to an untrustworthy app store, urging them to download a malicious application, which typically contains viruses, spyware, trojans, or other types of malware, enabling data theft, privacy breaches, ransomware attacks, and in some instances, even crypto-mining, the report said.
“With QR codes now deeply integrated into our daily lives, related scams have surged in prominence. Cybercriminals exploit this by surreptitiously replacing QR codes in establishments such as bars, restaurants, lounges, shops, and clubs. This can result in unauthorised UPI payments and potential financial harm,” said Vicky Ray, Principal Researcher -- Unit 42 at Palo Alto Networks.
The United Payment Interface (UPI) surpassed 10 billion monthly transactions in August with a transaction value of Rs 15.18 trillion ($204.77 billion).
Moreover, the report mentioned that another prevalent TTP (threats, tactics, and procedures) among cybercriminals is the use of "evil twin" or hotspot honeypots.
In this scenario, threat actors establish an insecure Wi-Fi network, enticing users with free internet access upon scanning their QR code.
Once connected, hackers intercept and eavesdrop on the data being transmitted, pilfering personal or confidential business information, online banking credentials, and credit card details, the report explained.
Given the global adoption of hybrid working, individuals must exercise caution and connect only to secure Wi-Fi networks to avoid falling into these cyber-traps.
