Jakarta, INTI – Digital crime schemes continue to evolve. This time, perpetrators are exploiting QR code technology to drain victims’ bank accounts through a method known as quishing. This crime is becoming increasingly common because QR codes are easy to create, even without special technical skills.
What is Quishing?
Quishing is a combination of the words QR code and phishing, where perpetrators lure victims into scanning a QR code that directs them to a fake website. These sites are designed to look almost identical to legitimate ones, making them hard to distinguish. Once the victim enters the site, they are usually prompted to download malicious files or enter login credentials, which are then stolen by the perpetrators.
According to a report by Wired, the downloaded files can damage devices and grant criminals full access to steal personal information or drain the victim’s bank account.
Characteristics of Fake QR Codes
Quishing scammers often include a sense of urgency or fear in the messages accompanying the QR code, for example:
“Scan this QR code to verify your identity or prevent your account from being deleted.”
The public is advised not to scan QR codes from unclear sources, especially those posted in public places or sent by strangers. Enabling two-factor authentication and logging out from unused devices are also important preventive measures.
7 Other Digital Scam Methods
Quishing is only one of many digital crime methods targeting mobile phone users. Here are several others:
- Fake Tax Warning Letters – Phishing emails impersonating the Directorate General of Taxes.
- Courier Scam – An APK file titled “View Package Photo” that steals victims’ data and funds.
- Digital Wedding Invitation – An APK file titled Digital Wedding Invitation Letter from an unknown sender.
- Fake Traffic Fine Notice – An APK file Traffic Fine-1.0 sent via chat.
- Impersonating MyTelkomsel – An APK file requesting access to personal data and digital banking services.
- Fake Bank Announcements – Phishing links impersonating a bank.
- Sex Video Call Invitation (VCS) – An extortion scheme after a video call from an unknown number.
Protect Yourself from Digital Crime
The public is urged to remain vigilant against all forms of digital fraud. Awareness of the dangers of clicking links or scanning codes from untrusted sources is the first line of defense in preventing financial and personal losses.
Conclusion:
QR code–based scams, also known as quishing, pose a serious threat to public digital security. By using fake QR codes that redirect victims to phishing sites or malicious files, perpetrators can steal personal data and even drain bank accounts. Vigilance, verifying the source of information, and using two-factor authentication are key measures to protect oneself from financial loss and data breaches.
Read More:Cyberattacks Exploit Trusted Platforms to Evade Detection and Paralyze Organizational Systems