SGGPO
To prevent QR code fraud, a representative of the Department of Information Security, Ministry of Information and Communications recommends that users be especially vigilant with QR codes posted or shared in public places or sent via social networks or email.
Fraud through QR code scanning is one of six issues that the Office of the Ministry of Information and Communications (MIC) has assessed as a prominent issue recently in a report shared at the regular September press conference of the MIC held on the afternoon of September 6.
According to a report from the Office of the Ministry of Information and Communications, in addition to the situation of QR codes being overwritten at stores, causing money to be transferred to fraudulent accounts, recently, there has also been a phenomenon of malicious QR codes being easily spread in articles and images through messaging applications, forums, and groups on social networks. When viewers scan this QR code, they will be redirected to gambling advertising pages with malicious code that can be installed on their phones.
 |
The Ministry of Information and Communications held a regular press conference on the afternoon of September 6, chaired by Deputy Minister Pham Duc Long and Deputy Minister Nguyen Thanh Lam. |
Answering questions from media agencies at a press conference about QR code fraud, Mr. Nguyen Duy Khiem, representative of the Department of Information Security (Ministry of Information and Communications), commented that QR codes have become increasingly popular everywhere, not only in Vietnam but also in many countries around the world . In particular, after the "boost" of the Covid-19 pandemic, the demand for QR codes has increased rapidly. According to statistics from the Payment Department, State Bank, QR codes have grown strongly in both quantity and value. In 2022, payments via QR codes increased by more than 225% in quantity and over 243% in value compared to 2021. "This shows that the payment method using QR codes is becoming more and more familiar to consumers," Mr. Nguyen Duy Khiem shared.
Along with the popular trend of payment methods using QR codes, the situation of fraud using QR codes has also been recorded to increase sharply in the world, even appearing in Vietnam in recent times. Specifically, in Vietnam, in early August, a number of banks issued warnings about credit card fraud via QR codes. The warning said that after making friends via social networks to communicate with victims, scammers will send QR codes for users to scan. This code leads to fake bank websites, which require users to enter information such as full name, citizen identification number, account, secret code or OTP. From there, users have their accounts taken over. Compared to traditional malicious links, QR codes have the advantage of being able to be inserted directly into emails and messages without being blocked by filters, thereby easily reaching users.
The representative of the Information Security Department also clearly analyzed: in fact, the nature of QR Code is not a direct attack malware but only an intermediary to transmit content. Whether users are attacked or not depends on how the content is processed after scanning the QR Code.
 |
Representative of the Department of Information Security (Ministry of Information and Communications) Nguyen Duy Khiem spoke to the press at the press conference. |
From the above reality, Mr. Nguyen Duy Khiem recommends that first, users need to be careful before scanning QR Codes, especially wary of QR codes that are posted or shared in public places or sent via social networks, emails. Users also need to identify and carefully check the account information of the QR code exchanger; carefully consider the content of the website that the QR code leads to; check the link to see if it starts with "https" and is a familiar domain name. Along with that, users are also recommended to absolutely not provide personal information such as bank login accounts, social network accounts. Use password managers, 2-factor authentication and other protection methods for accounts.
For units and organizations providing QR codes, the representative of the Information Security Department suggested that in their activities, they should pay attention to warning and propaganda to users, for example, banks have recently warned customers. Agencies and units providing QR codes also need to promptly provide solutions to verify transactions with signs of abnormality. At the same time, regularly check QR codes posted at the locations of provision.
Source
Comment (0)