Given the rise in smart phone usage over the past few years, QR (Quick Response) codes have increasingly become a popular tool for traditional retail outlets trying to connect with online audiences., with Village cinemas being just one of a string of Australian businesses to adapt the technology recently.
Now that QR codes can now be found on flyers, websites, buses and billboards they have become a new target for cyber criminals – always looking to exploit the latest technology for their own gain. Malicious QR codes can easily be placed over legitimate QR codes using printed stickers for small and widespread attacks on your personal and financial details.
Not only could these savvy criminals target legitimate forms of advertising, but they could also easily distribute their own flyers and advertisements via guerrilla marketing techniques offering up enticing deals. It shouldn’t come as a surprise, cyber-criminals have been doing this for years in the form of email phishing campaigns. Just as with that form of attack, QR codes could send mobile web browsers to malicious websites to complete web forms and download malware, infecting your device or stealing your details for more sinister use.
Llyod Borrett, AVG security expert:
“You must think of your device as the being the powerful mobile computer it is. Take similar security precautions when out and about with your smartphone or tablet as you do when using a personal computer at home or work. Have always on, up-to-date security software installed on your device. And, always think through every action before you click on a bargain.”
“Our surveys show that the majority of people aren’t even password protecting their smartphone and tablet devices,” said Borrett. “Yet they need to be doing much more, including installing a good security solution like AVG Mobilation for Android. Then they will have protection in place that will check apps and web site content for malware should they be tricked into using a malicious QR code.”
For further information and security tips, see the AVG website.