Woops, maybe you shouldn’t have done that!
Don’t worry, this is just an exercise by the DG CONNECT security awareness team, it’s completely safe. We’re not storing any data of yours, and no individual information will be processed.
Don't panic!
Scanning an unknown QR-code is just as dangerous as clicking a phishy link. Your data and the EC data could have been at risk, or malicious software could have been installed on your device. Likewise, you might become a victim of a phishing attack, or others may track your online behaviour.
So, thank you for watching out in the future. Keep it confidential for now, your colleagues may need to learn this, too! Further information will be shared with you.
There are really good reasons to not scan every QR code. But if you still want to, take the following into account:
#1. Always treat QR codes as links
Before you read the QR code, take a moment to think about whether you trust the sender or genuinely need the embedded information.
#2. Expose the hidden URL
IOS phones’ cameras or QR code scanner software can read and expose the hidden URL. Check to see if the domain name matches the URL before opening the link. If suspicious, avoid the link.
#3. Use multi-factor authentication
Using multi-factor authentication will add an extra layer of defense for your accounts, resulting in an extra difficulty for a threat actor in case of breach.
Some numbers about QR Code phishing
of organisations experienced phishing
The use of QR code scans has increased by 433% from 2021 to 2022
Resources around security awareness
You got Phished!
Avoiding Phishing Scams
Phishing Attacks
Cyber security awareness