QR codes, which are square-like barcode things you can scan with your phone for quick and easy access to a website, are sort of an evolution of the AOL keyword. They are incredibly useful and save precious seconds in hundreds of different ways and scenarios. But since the code is basically just a visualized web address, you’ll need to be careful about which ones you scan and activate. That’s according to the U.S. Federal Trade Commission’s latest consumer alert.
The FTC’s warning blog post says scammers are actively using fake and malicious QR codes; Fake in the sense that they are fake, not in the sense that they are dysfunctional, but in the sense that they are misleading. The post refers to .
This is on top of less sophisticated schemes that send a QR code via a fake email or text message to add another layer of obfuscation to a dodgy website or app download. These are not isolated incidents; Tens of thousands of such attacks have been documented so far. The advice for protecting yourself is the same as always. Be wary of anything that forces you to make a quick decision, such as an email or text message saying your package is late, and carefully examine the URL of a publicly posted code before visiting the site.