QR codes are a a two-dimensional type of barcode, or scannable pattern in the form of a square image. QR stands for Quick Response. You can point your smartphone camera at a QR code to access a wide variety of data, like website links, account information, phone numbers, or even coupons.

QR codes have become more popular since the pandemic, many restaurants started using them in place of paper menus. Now, the FBI is warning consumers that criminals are tampering with some codes to steal information and money.

Cybercriminals are changing the code in legitimate QR codes to disguise malicious links that steal your information, redirect your payments, or install malware on your smartphone. You really can't differentiate between a legitimate QR code and a malicious one. The FBI is warning people to use caution with them, especially when making a payment through one.

Stay Safe When Scanning QR Codes

QR codes are convenient, but they can also pose security risks. Keep these precautions in mind:

• Be cautious when entering information on a website accessed via a QR code. Always verify the legitimacy of the site.

  
  

• Avoid downloading apps from QR code links. Instead, get them directly from your device’s official app store.

  
  

• Inspect the QR code for tampering. If you see a sticker placed over the original code, it could be malicious.

  
  

• Double-check the website URL before entering any sensitive information to ensure it’s legitimate.

  
  

• Beware of QR code scanner apps. The FBI warns that some may increase your risk of downloading malware.

  
  

• Make payments only through trusted websites—not through links accessed via QR codes.

While QR codes aren’t normally malicious, it is crucial to be cautious when entering financial and personal data. The FBI is asking the public to double-check any website generated by a QR code, to be careful while entering their details after scanning one, and ensure that physical QR codes are not covered by fake ones. The bureau has also recommended to not download apps via QR codes. Treat QR codes like you treat suspicious phishing emails. If you have or think you might have a malicious QR code, report the code to the Better Business Bureau.

A little caution goes a long way in protecting your personal and financial information. Stay vigilant!